CVE-2011-2220

CVSS 10.0 - HIGH
Description

Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used in Novell File Reporter and other products, allows remote attackers to execute arbitrary code via a crafted RECORD element.

Affected Products
2
Vendor Product Version
novell file_reporter_engine All versions
novell file_reporter All versions
References
http://download.novell.com/Download?buildid=leLxi7...
http://secunia.com/advisories/45065
http://securityreason.com/securityalert/8305
http://securitytracker.com/id?1025722
http://www.securityfocus.com/archive/1/518632/100/...
http://www.zerodayinitiative.com/advisories/ZDI-11...
http://download.novell.com/Download?buildid=leLxi7...
http://secunia.com/advisories/45065
http://securityreason.com/securityalert/8305
http://securitytracker.com/id?1025722
http://www.securityfocus.com/archive/1/518632/100/...
http://www.zerodayinitiative.com/advisories/ZDI-11...
Weakness Types
CWE-119
CVE Information
CVE ID:
CVE-2011-2220
Published:
2011-07-14
Modified:
2026-04-29
CVSS Score:
10.0
Severity:
HIGH
Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Vendors
novell
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL