CVE-2011-0742

Description

Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld Management 7.0 allows remote attackers to execute arbitrary code via a crafted IP Conduit packet to TCP port 2400.

Affected products

• Novell / zenworks_handheld_management7 – 7

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/64930
• MISChttp://www.securityfocus.com/archive/1/516045/100/0/threaded
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2011/0221
• MISChttp://osvdb.org/70694
• VENDOR_ADVISORYhttp://secunia.com/advisories/43094
• MISChttp://www.securityfocus.com/bid/46024
• MISChttp://www.novell.com/support/viewContent.do?externalId=7007663
• MISChttp://www.securitytracker.com/id?1024993
• MISChttp://telussecuritylabs.com/threats/show/FSC20110125-06
• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-11-026/