Unrated severityNVD Advisory· Published Jun 21, 2010· Updated Apr 29, 2026
CVE-2010-2351
CVE-2010-2351
Description
Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.
Affected products
20cpe:2.3:a:novell:netware:5.0:*:*:*:*:*:*:*+ 19 more
- cpe:2.3:a:novell:netware:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:5.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:5.1:sp7:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:5.1:sp8:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.0:sp5:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp5:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp6:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:6.5:sp7:*:*:*:*:*:*
- cpe:2.3:a:novell:netware:*:sp8:*:*:*:*:*:*range: <=6.5
- cpe:2.3:o:novell:netware:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:novell:netware:6.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- download.novell.com/DownloadnvdPatch
- www.exploit-db.com/exploits/13906nvdExploit
- www.securityfocus.com/bid/40908nvdExploit
- www.stratsec.net/Research/Advisories/SS-2010-006-Netware-SMB-Remote-Stack-OverflownvdExploit
- secunia.com/advisories/40199nvdVendor Advisory
- www.vupen.com/english/advisories/2010/1514nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/59501nvd
News mentions
0No linked articles in our index yet.