CVE-2007-6302

Currently unrated

Key Information:

Vendor: Novell
Status: Netmail
Vendor: CVE Published:; 10 December 2007

Summary

Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162."

References

https://secure-support.novell.com/KanisaPlatform/Publishi...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2007/4112

vdb-entryx_refsource_VUPEN

http://www.zerodayinitiative.com/advisories/ZDI-07-072.html

x_refsource_MISC

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 10, 2007
Vulnerability Reserved
Dec 10, 2007

Collectors

NVD DatabaseMitre Database