This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:novell:imanager:2.0
Detail
VendorNovellFirst view 2004-11-23
ProductImanagerLast view 2012-04-09
Version2.0TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:novell:imanager

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
42012-04-09CVE-2011-4188NetworkLowRequires ...
7.52010-01-08CVE-2009-4486NetworkLowNone Requ...
7.52008-08-06CVE-2008-3488NetworkLowNone Requ...
7.82006-11-01CVE-2006-4517NetworkLowNone Requ...
52004-11-23CVE-2004-0112NetworkLowNone Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52004-11-23CVE-2004-0081NetworkLowNone Requ...
52004-11-23CVE-2004-0079NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
40% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
20% (1)CWE-399Resource Management Errors
20% (1)CWE-264Permissions, Privileges, and Access Controls
20% (1)CWE-189Numeric Errors

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:9779The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to...
oval:org.mitre.oval:def:975Red Hat OpenSSL do_change_cipher_spec Function Denial of Service
oval:org.mitre.oval:def:870Red Hat Enterprise 3 OpenSSL do_change_cipher_spec Function Denial of Service
oval:org.mitre.oval:def:5770Multiple Vendor OpenSSL 0.9.6x, 0.9.7x Null-Pointer DoS Vulnerability
oval:org.mitre.oval:def:2621OpenSSL Denial of Service Vulnerabilities
Hide | Show 6 More...
idName
oval:org.mitre.oval:def:902Red Hat OpenSSL Improper Unknown Message Handling Vulnerability
oval:org.mitre.oval:def:871Red Hat Enterprise 3 OpenSSL Improper Unknown Message Handling Vulnerability
oval:org.mitre.oval:def:11755OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, w...
oval:org.mitre.oval:def:9580The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when usin...
oval:org.mitre.oval:def:928Red Hat Enterprise 3 OpenSSL Kerberos Handshake Vulnerability
oval:org.mitre.oval:def:1049Red Hat OpenSSL Kerberos Handshake Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
61584Novell iManager eDirectory Plugin Schema Information Handling Overflow
47278Novell iManager Property Book Pages Arbitrary Plug-in Studio Deletion
29997Novell iManager Tomcat HTTP POSTS TREE Variable DoS
4318OpenSSL TLS Infinite Loop DoS
4317OpenSSL SSL/TLS Handshake Null Pointer DoS
Hide | Show 1 More...
idDescription
4316OpenSSL Kerberos SSL/TLS Handshake DoS

OpenVAS Exploits

idDescription
2012-05-11Name : Novell iManager jclient 'EnteredAttrName' Buffer Overflow Vulnerability
File : nvt/gb_novell_imanager_jclient_bof_vuln.nasl
2010-01-11Name : Novell iManager Importing/Exporting Schema Stack Buffer Overflow Vulnerability
File : nvt/novell_imanager_37672.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-05-05Name : HP-UX Update for AAA Server HPSBUX01011
File : nvt/gb_hp_ux_HPSBUX01011.nasl
2009-05-05Name : HP-UX Update for Apache HPSBUX01019
File : nvt/gb_hp_ux_HPSBUX01019.nasl
Hide | Show 5 More...
idDescription
2008-09-24Name : Gentoo Security Advisory GLSA 200403-03 (OpenSSL)
File : nvt/glsa_200403_03.nasl
2008-09-04Name : FreeBSD Ports: openssl, openssl-beta
File : nvt/freebsd_openssl.nasl
2008-09-04Name : FreeBSD Security Advisory (FreeBSD-SA-04:05.openssl.asc)
File : nvt/freebsdsa_openssl1.nasl
2008-01-17Name : Debian Security Advisory DSA 465-1 (openssl,openssl094,openssl095)
File : nvt/deb_465_1.nasl
0000-00-00Name : Slackware Advisory SSA:2004-077-01 OpenSSL security update
File : nvt/esoft_slk_ssa_2004_077_01.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Novell iManager buffer overflow attempt
RuleID : 23354 - Type : SERVER-WEBAPP - Revision : 3
2014-01-10Novell iManager Tree parameter denial of service attempt
RuleID : 19205 - Type : SERVER-OTHER - Revision : 6
2014-01-10Novell iManager eDirectory plugin schema buffer overflow attempt - POST request
RuleID : 16430 - Type : SERVER-WEBAPP - Revision : 5
2014-01-10Novell iManager eDirectory plugin schema buffer overflow attempt - GET request
RuleID : 16429 - Type : SERVER-WEBAPP - Revision : 5
2014-01-10Novell iManager Tree parameter denial of service attempt
RuleID : 16052 - Type : SERVER-OTHER - Revision : 10

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-01-04Name : The remote server is vulnerable to a denial of service attack.
File : openssl_0_9_6m_0_9_7d.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_68233cba777411d889ed0020ed76ef5a.nasl - Type : ACT_GATHER_INFO
2008-08-12Name : The remote web server is affected by a security bypass vulnerability.
File : novell_imgr_security_bypass_vuln.nasl - Type : ACT_GATHER_INFO
2006-07-03Name : The remote CentOS host is missing a security update.
File : centos_RHSA-2005-830.nasl - Type : ACT_GATHER_INFO
2005-11-04Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2005-829.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2005-11-04Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2005-830.nasl - Type : ACT_GATHER_INFO
2005-11-02Name : The remote Fedora Core host is missing a security update.
File : fedora_2005-1042.nasl - Type : ACT_GATHER_INFO
2005-08-18Name : The remote host is missing a Mac OS X update that fixes various security issues.
File : macosx_SecUpd2005-007.nasl - Type : ACT_GATHER_INFO
2005-07-13Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2004-077-01.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30640.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30641.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30642.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30643.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30644.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30645.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30646.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30648.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30649.nasl - Type : ACT_GATHER_INFO
2005-03-18Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30650.nasl - Type : ACT_GATHER_INFO
2005-02-16Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30639.nasl - Type : ACT_GATHER_INFO
2005-02-16Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHSS_30647.nasl - Type : ACT_GATHER_INFO
2004-09-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-465.nasl - Type : ACT_GATHER_INFO
2004-08-30Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200403-03.nasl - Type : ACT_GATHER_INFO
2004-07-31Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2004-023.nasl - Type : ACT_GATHER_INFO
2004-07-25Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2004_007.nasl - Type : ACT_GATHER_INFO