Stack-Based Buffer Overflow in Novell Client for Windows
CVE-2007-6701

Currently unrated

Key Information:

Vendor: Novell
Status: Client
Vendor: CVE Published:; 13 February 2008

Summary

Multiple buffer overflow vulnerabilities exist in the Novell Client 4.91 SP4 for Windows, specifically within the Spooler service (nwspool.dll). These vulnerabilities allow remote attackers to exploit long arguments in unspecified RPC functions, leading to potential execution of arbitrary code. This issue poses a significant risk to systems running the affected software, as it can be exploited remotely without requiring local access.

References

http://archives.neohapsis.com/archives/bugtraq/2007-08/00...

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/26238

third-party-advisoryx_refsource_SECUNIA

http://support.novell.com/docs/Readmes/InfoDocument/patch...

x_refsource_CONFIRM

EPSS Score

40% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 13, 2008
Vulnerability Reserved
Feb 13, 2008