Vulnerability Details : CVE-2005-3655
Potential exploit
Heap-based buffer overflow in Novell Open Enterprise Server Remote Manager (novell-nrm) in Novell SUSE Linux Enterprise Server 9 allows remote attackers to execute arbitrary code via an HTTP POST request with a negative Content-Length parameter.
Vulnerability category: OverflowExecute code
Products affected by CVE-2005-3655
- cpe:2.3:a:novell:open_enterprise_server:9:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-3655
6.64%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-3655
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2005-3655
-
http://www.novell.com/linux/security/advisories/2006_02_novellnrm.html
-
http://secunia.com/advisories/18484
-
http://securitytracker.com/id?1015487
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/24111
-
http://www.securityfocus.com/bid/16226
-
http://www.osvdb.org/22455
-
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=371
Exploit
-
http://securityreason.com/securityalert/348
Jump to