Computer Security
[EN] securityvulns.ru no-pyccku


Novell Netware Client multiple security vulnerabilities
updated since 29.11.2006
Published:01.12.2006
Source:
SecurityVulns ID:6868
Type:remote
Threat Level:
6/10
Description:Buffer overflow in EnumPrinters() and OpenPrinter() functions. Format string vulnerability in Novell Modular Authentication Services.
Affected:NOVELL : NetWare Client 4.91
CVE:CVE-2006-5854 (Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.)
Original documentdocumentDeral Heiland, [Full-disclosure] Layered Defense Advisory: Novell Client 4.91 Format String Vulnerability (01.12.2006)
 documentZDI, ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability (29.11.2006)
Files:Citrix Metaframe Presentation Server / Javvin DiskAccess printer provider buffer overflow

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod