CVE-2013-3705

CWE-20 — Improper Input Validation3 documents3 sources

Severity

4.9MEDIUM

EPSS

0.0%

top 89.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Client

Timeline

PublishedDec 22

Latest updateMay 17

Description

The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via an IOCTL call for an invalid IOCTL.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

▶NVDnovell/client2.0

🔴Vulnerability Details

GHSA

GHSA-8q9w-3v3g-fm5f: The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via↗2022-05-17

▶

CVEList

CVE-2013-3705: The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via↗2013-12-22

▶