Stack-based Buffer Overflow in Novell NetMail WebAdmin
CVE-2007-1350

Currently unrated

Key Information:

Vendor: Novell
Status: Netmail
Vendor: CVE Published:; 8 March 2007

Summary

A stack-based buffer overflow vulnerability exists in the webadmin.exe component of Novell NetMail 3.5.2. This security flaw could allow remote attackers to execute arbitrary code by sending a specially crafted long username during HTTP Basic authentication. Successful exploitation may compromise the integrity and confidentiality of the affected systems, highlighting the necessity of timely patching and monitoring for unusual login attempts.

References

http://secunia.com/advisories/24445

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/0870

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/archive/1/462154/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 8, 2007
Vulnerability Reserved
Mar 7, 2007