CVE-2012-4956

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

68.6%

top 1.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell File Reporter

Timeline

PublishedNov 18

Latest updateMay 17

Description

Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to execute arbitrary code via a large number of VOL elements in an SRS record.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDnovell/file_reporter1.0.2

🔴Vulnerability Details

GHSA

GHSA-72x7-fjwv-3c75: Heap-based buffer overflow in NFRAgent↗2022-05-17

▶

CVEList

CVE-2012-4956: Heap-based buffer overflow in NFRAgent↗2012-11-18

▶