CVE-2010-4299
Novell Zenworks Handheld Management - Remote Code Execution via Crafted TCP Port 2400 Request
Title source: llmDescription
Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 Handheld Management (ZHM) allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400.
References (5)
Core 5
Core References
Patch, Third Party Advisory mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=128916914213292&w=2
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/viewContent.do?externalId=7007135
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1024691
Third Party Advisory, VDB Entry x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-10-230/
Permissions Required third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42130
Scores
EPSS
0.0941
EPSS Percentile
92.9%
Details
CWE
CWE-119
Status
published
Products (1)
novell/zenworks_handheld_management
7 (2 CPE variants)
Published
Nov 22, 2010
Tracked Since
Feb 18, 2026