cpe:/a:novell:imanager:2.7.0 cpe:/a:novell:imanager:2.7.3 cpe:/a:novell:imanager:2.7.3:ftf2 CVE-2010-1929 2010-06-28T13:30:01.077-04:00 2017-08-16T21:32:32.523-04:00 9.0 NETWORK LOW SINGLE_INSTANCE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2010-06-28T15:38:00.000-04:00 SECTRACK 1024152 EXPLOIT-DB 14010 BUGTRAQ 20100623 CORE-2010-0316 - Novell iManager Multiple Vulnerabilities SECUNIA 40281 BID 40480 OSVDB 65737 VUPEN ADV-2010-1575 MISC http://www.coresecurity.com/content/novell-imanager-buffer-overflow-off-by-one-vulnerabilities XF imanager-class-bo(59694) Multiple stack-based buffer overflows in the jclient._Java_novell_jclient_JClient_defineClass@20 function in jclient.dll in the Tomcat web server in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allow remote authenticated users to execute arbitrary code via the (1) EnteredClassID or (2) NewClassName parameter to nps/servlet/webacc.