← Back

CVE-2013-3956

nvd nist
Published: Jul 31, 2013Modified: Apr 29, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

The NICM.SYS kernel driver 3.1.11.0 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003; Novell Client 2 SP2 on Windows Vista and Windows Server 2008; and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted 0x143B6B IOCTL call.

Affected (3)

Products: Novell: Client
Novell
1 product
Client
Configuration A
1 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Client
Version 4.91 sp5
Running on/withPlatform Versions
Microsoft
Windows 2003 Server
All versions
Microsoft
Windows Xp
All versions
Configuration B
1 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Client
Version 2.0 sp2
Running on/withPlatform Versions
Microsoft
Windows Server 2008
All versions
Microsoft
Windows Vista
All versions
Configuration C
1 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Client
Version 2.0 sp3
Running on/withPlatform Versions
Microsoft
Windows 7
All versions
Microsoft
Windows 8
All versions
Microsoft
Windows 8
All versions
Microsoft
Windows Server 2008
Version r2

Related CWEs

CWE-264
CWE-264

References (8)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.