Buffer Overflow Vulnerabilities in Novell ZENworks Remote Management
CVE-2005-1543

Currently unrated

Key Information:

Vendor: Novell
Status: Zenworks Desktops; Zenworks Server Management; Zenworks Remote Management; Zenworks
Vendor: CVE Published:; 25 May 2005

Summary

Novell ZENworks Remote Management is vulnerable to multiple stack-based and heap-based buffer overflow issues in its authentication process via zenrem32.exe. Attackers can exploit these vulnerabilities through unspecified vectors, type 1 authentication requests, and type 2 authentication requests, potentially allowing them to execute arbitrary code on the affected systems. Organizations using ZENworks 6.5 and earlier versions are encouraged to assess their exposure and apply available patches to mitigate these risks.

References

http://www.rem0te.com/public/images/zen.pdf

x_refsource_MISC

http://www.securityfocus.com/bid/13678

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/20639

vdb-entryx_refsource_XF

EPSS Score

78% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 25, 2005
Vulnerability Reserved
May 14, 2005