Denial of Service Vulnerability in Novell Netware 6.5 by Novell
CVE-2010-0317

Currently unrated

Key Information:

Vendor: Novell
Status: Netware
Vendor: CVE Published:; 15 January 2010

What is CVE-2010-0317?

Novell Netware 6.5 SP8 is vulnerable to a denial of service attack that can be triggered by remote attackers sending a significant number of malformed AFP or CIFS requests. This may lead to a NULL pointer dereference, causing memory consumption issues, a system ABEND, and ultimately a crash of the service. Proper validation of incoming requests is inadequate, exposing the system to these disruptions.

References

http://www.vupen.com/english/advisories/2010/0041

vdb-entryx_refsource_VUPEN

http://www.securitytracker.com/id?1023400

vdb-entryx_refsource_SECTRACK

http://protekresearch.blogspot.com/2010/01/prl-cifsnlm-me...

x_refsource_MISC

EPSS Score

8% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 15, 2010
Vulnerability Reserved
Jan 15, 2010