CVE-2010-0317

high

Description

Novell Netware 6.5 SP8 allows remote attackers to cause a denial of service (NULL pointer dereference, memory consumption, ABEND, and crash) via a large number of malformed or AFP requests that are not properly handled by (1) the CIFS functionality in CIFS.nlm Semantic Agent (Build 163 MP) 3.27 or (2) the AFP functionality in AFPTCP.nlm Build 163 SP 3.27. NOTE: some of these details are obtained from third party information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/55389

http://www.vupen.com/english/advisories/2010/0041

http://www.securitytracker.com/id?1023400

http://www.securityfocus.com/archive/1/508731/100/0/threaded

http://secunia.com/advisories/38114

http://protekresearch.blogspot.com/2010/01/prl-cifsnlm-memory-consumption-denial.html

Details

Source: Mitre, NVD

Published: 2010-01-15

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.08627