| Name | novell_nicm |
| CVE | CVE-2013-3956 |
| Exploit Pack | CANVAS |
| Description | nicm.sys Privilege Escalation |
| Notes | CVE Name: CVE-2013-3956 Notes: The IOCTL handler for the nicm.sys driver in Novell Client IR5 does not validate pointers from usermode buffers. When passing in the IOCTL 0x143B6B an attacker can supply a function pointer that lives in usermode resulting in a privilege escalation. The original 0-day was posted to Pastebin here: http://pastebin.com/GB4iiEwR Repeatability: Infinite CVS URL: Date public: 05/22/2013 CVE Url: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3956 CVSS: |
| Learn more about the CANVAS Exploit Pack here: CANVAS |