CVE-2013-3697Client vulnerability

CWE-1893 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 93.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Client
Timeline
PublishedJul 31
Latest updateMay 17

Description

Integer overflow in the NWFS.SYS kernel driver 4.91.5.8 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003 and the NCPL.SYS kernel driver in Novell Client 2 SP2 on Windows Vista and Windows Server 2008 and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 might allow local users to gain privileges via a crafted 0x1439EB IOCTL call.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDnovell/client2.0, 4.91+1

🔴Vulnerability Details

2
GHSA
GHSA-cm4m-r3qm-vqpq: Integer overflow in the NWFS2022-05-17
CVEList
CVE-2013-3697: Integer overflow in the NWFS2013-07-31
CVE-2013-3697 — Novell Client vulnerability | cvebase