This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:novell:imanager:2.0
Detail
VendorNovellFirst view 2004-11-23
ProductImanagerLast view2013-04-24
Version2.0TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:novell:imanager

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
102013-04-24CVE-2013-3268NetworkLowNone Requ...
6.82013-04-24CVE-2013-1088NetworkMediumNone Requ...
42012-04-09CVE-2011-4188NetworkLowRequires ...
7.52010-01-08CVE-2009-4486NetworkLowNone Requ...
7.52008-08-06CVE-2008-3488NetworkLowNone Requ...
Hide | Show 5 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82006-11-01CVE-2006-4517NetworkLowNone Requ...
9.32005-12-31CVE-2005-1730NetworkMediumNone Requ...
52004-11-23CVE-2004-0112NetworkLowNone Requ...
52004-11-23CVE-2004-0081NetworkLowNone Requ...
52004-11-23CVE-2004-0079NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (1)CWE-399Resource Management Errors
14% (1)CWE-352Cross-Site Request Forgery (CSRF)
14% (1)CWE-287Improper Authentication
14% (1)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 1 More...
%idName
14% (1)CWE-189Numeric Errors

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:9580The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when usin...
oval:org.mitre.oval:def:928Red Hat Enterprise 3 OpenSSL Kerberos Handshake Vulnerability
oval:org.mitre.oval:def:1049Red Hat OpenSSL Kerberos Handshake Vulnerability
oval:org.mitre.oval:def:9779The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to...
oval:org.mitre.oval:def:975Red Hat OpenSSL do_change_cipher_spec Function Denial of Service
Hide | Show 6 More...
idName
oval:org.mitre.oval:def:870Red Hat Enterprise 3 OpenSSL do_change_cipher_spec Function Denial of Service
oval:org.mitre.oval:def:5770Multiple Vendor OpenSSL 0.9.6x, 0.9.7x Null-Pointer DoS Vulnerability
oval:org.mitre.oval:def:2621OpenSSL Denial of Service Vulnerabilities
oval:org.mitre.oval:def:902Red Hat OpenSSL Improper Unknown Message Handling Vulnerability
oval:org.mitre.oval:def:871Red Hat Enterprise 3 OpenSSL Improper Unknown Message Handling Vulnerability
oval:org.mitre.oval:def:11755OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, w...

Open Source Vulnerability Database (OSVDB)

idDescription
61584Novell iManager eDirectory Plugin Schema Information Handling Overflow
47278Novell iManager Property Book Pages Arbitrary Plug-in Studio Deletion
29997Novell iManager Tomcat HTTP POSTS TREE Variable DoS
4318OpenSSL TLS Infinite Loop DoS
4317OpenSSL SSL/TLS Handshake Null Pointer DoS
Hide | Show 2 More...
idDescription
4316OpenSSL Kerberos SSL/TLS Handshake DoS
3943OpenSSL ASN.1 Parser Invalid Encoding DoS

OpenVAS Exploits

idDescription
2012-05-11Name : Novell iManager jclient 'EnteredAttrName' Buffer Overflow Vulnerability
File : nvt/gb_novell_imanager_jclient_bof_vuln.nasl
2010-01-11Name : Novell iManager Importing/Exporting Schema Stack Buffer Overflow Vulnerability
File : nvt/novell_imanager_37672.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-05-05Name : HP-UX Update for AAA Server HPSBUX01011
File : nvt/gb_hp_ux_HPSBUX01011.nasl
2009-05-05Name : HP-UX Update for Apache HPSBUX01019
File : nvt/gb_hp_ux_HPSBUX01019.nasl
Hide | Show 5 More...
idDescription
2008-09-24Name : Gentoo Security Advisory GLSA 200403-03 (OpenSSL)
File : nvt/glsa_200403_03.nasl
2008-09-04Name : FreeBSD Ports: openssl, openssl-beta
File : nvt/freebsd_openssl.nasl
2008-09-04Name : FreeBSD Security Advisory (FreeBSD-SA-04:05.openssl.asc)
File : nvt/freebsdsa_openssl1.nasl
2008-01-17Name : Debian Security Advisory DSA 465-1 (openssl,openssl094,openssl095)
File : nvt/deb_465_1.nasl
0000-00-00Name : Slackware Advisory SSA:2004-077-01 OpenSSL security update
File : nvt/esoft_slk_ssa_2004_077_01.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Novell iManager buffer overflow attempt
RuleID : 23354 - Type : SERVER-WEBAPP - Revision : 7
2014-01-10Novell iManager Tree parameter denial of service attempt
RuleID : 19205 - Type : SERVER-OTHER - Revision : 10
2014-01-10Novell iManager eDirectory plugin schema buffer overflow attempt - POST request
RuleID : 16430 - Type : SERVER-WEBAPP - Revision : 5
2014-01-10Novell iManager eDirectory plugin schema buffer overflow attempt - GET request
RuleID : 16429 - Type : SERVER-WEBAPP - Revision : 5
2014-01-10Novell iManager Tree parameter denial of service attempt
RuleID : 16052 - Type : SERVER-OTHER - Revision : 14

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2013-04-19Name : The remote web application is affected by multiple vulnerabilities.
File : novell_imanager_csrf.nasl - Type : ACT_GATHER_INFO
2012-01-04Name : The remote server is vulnerable to a denial of service attack.
File : openssl_0_9_6m_0_9_7d.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_68233cba777411d889ed0020ed76ef5a.nasl - Type : ACT_GATHER_INFO
2008-08-12Name : The remote web server is affected by a security bypass vulnerability.
File : novell_imgr_security_bypass_vuln.nasl - Type : ACT_GATHER_INFO
2006-07-03Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2005-830.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2005-11-04Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2005-829.nasl - Type : ACT_GATHER_INFO
2005-11-04Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2005-830.nasl - Type : ACT_GATHER_INFO
2005-11-02Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1042.nasl - Type : ACT_GATHER_INFO
2005-08-18Name : The remote host is missing a Mac OS X update that fixes various security issues.
File : macosx_SecUpd2005-007.nasl - Type : ACT_GATHER_INFO
2005-07-13Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2004-077-01.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30640.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30641.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30642.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30643.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30644.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30645.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30646.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30648.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30649.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30650.nasl - Type : ACT_GATHER_INFO
2005-02-16Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30639.nasl - Type : ACT_GATHER_INFO
2005-02-16Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30647.nasl - Type : ACT_GATHER_INFO
2004-09-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-136.nasl - Type : ACT_GATHER_INFO
2004-09-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-465.nasl - Type : ACT_GATHER_INFO
2004-08-30Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200403-03.nasl - Type : ACT_GATHER_INFO