CVE-2013-3956

The NICM.SYS kernel driver 3.1.11.0 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003; Novell Client 2 SP2 on Windows Vista and Windows Server 2008; and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted 0x143B6B IOCTL call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
novellclient
4.91:sp5
novellclient
2.0:sp2
novellclient
2.0:sp3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://pastebin.com/GB4iiEwR
http://www.exploit-db.com/exploits/26452
http://www.exploit-db.com/exploits/27191
http://www.novell.com/support/kb/doc.php?id=7012497
http://pastebin.com/GB4iiEwR
http://www.exploit-db.com/exploits/26452
http://www.exploit-db.com/exploits/27191
http://www.novell.com/support/kb/doc.php?id=7012497