Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-0317

CWE-3994 documents4 sources
Severity
7.8HIGH
EPSS
10.1%
top 6.92%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Novell Netware
Timeline
PublishedJan 15
Latest updateMay 2

Description

Novell Netware 6.5 SP8 allows remote attackers to cause a denial of service (NULL pointer dereference, memory consumption, ABEND, and crash) via a large number of malformed or AFP requests that are not properly handled by (1) the CIFS functionality in CIFS.nlm Semantic Agent (Build 163 MP) 3.27 or (2) the AFP functionality in AFPTCP.nlm Build 163 SP 3.27. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-xf59-c653-rhw8: Novell Netware 62022-05-02
CVEList
CVE-2010-0317: Novell Netware 62010-01-15

💥Exploits & PoCs

1
Exploit-DB
Novell Netware - CIFS and AFP Remote Memory Consumption Denial of Service2010-01-05
CVE-2010-0317 (HIGH CVSS 7.8) | Novell Netware 6.5 SP8 allows remot | cvebase.io