CVE-2013-3697

Integer overflow in the NWFS.SYS kernel driver 4.91.5.8 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003 and the NCPL.SYS kernel driver in Novell Client 2 SP2 on Windows Vista and Windows Server 2008 and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 might allow local users to gain privileges via a crafted 0x1439EB IOCTL call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
VendorProductVersion
novellclient
4.91:sp5
novellclient
2.0:sp2
novellclient
2.0:sp3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://pastebin.com/RcS2Bucg
http://www.novell.com/support/kb/doc.php?id=7012497
http://pastebin.com/RcS2Bucg
http://www.novell.com/support/kb/doc.php?id=7012497