Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:5A002CDFE7ACBD0171861D507899EDD7
HistoryDec 01, 2006 - 12:00 a.m.

Novell Client nwspool.dll buffer overflow

2006-12-0100:00:00
SAINT Corporation
www.saintcorporation.com
18

0.928 High

EPSS

Percentile

98.8%

JSON

Added: 12/01/2006
CVE: CVE-2006-5854
BID: 21220
OSVDB: 30547

Background

Novell Client software provides NetWare connectivity to Windows platforms.

Problem

The **nwspool.dll** library in Novell Client is affected by buffer overflows in the **EnumPrinters** and **OpenPrinter** functions, allowing remote attackers to execute arbitrary commands by sending a specially crafted RPC request to the Spooler service.

Resolution

Apply **491psp3_nwspool.exe**. Patches are available from Novell.

References

<http://www.securityfocus.com/archive/1/453012&gt;
[http://www.novell.com/support/search.do?cmd=displayKC&amp;externalId=3125538&amp;sliceId=SAL_Public ](<http://www.novell.com/support/search.do?cmd=displayKC&externalId=3125538&sliceId=SAL_Public
>)

Limitations

Exploit works on Novell Client 4.91 SP3 on Windows 2000.

Platforms

Windows

Related

securityvulns 3
seebug 3
exploitpack 3
cert 1
zdi 1
saint 3
cve 5
canvas 1
nessus 1
checkpoint_advisories 1
exploitdb 3
prion 3
securityvulns
securityvulns
Novell Netware Client multiple security vulnerabilities
2006-12-01 00:00:00
ZDI-06-043: Novell Netware Client Print Provider Buffer Overflow Vulnerability
2006-11-29 00:00:00
Citrix Metaframe Presentation Server / Javvin DiskAccess printer provider buffer overflow
2007-01-25 00:00:00
seebug
seebug
SSC DiskAccess NFS Client DAPCNFSD.DLL Stack Buffer Overflow Vulnerability
2014-07-01 00:00:00
Novell Client 4.91 NWSPOOL.DLL Remote Buffer Overflow Vulnerability
2014-07-01 00:00:00
Multiple Printer Providers (spooler service) Privilege Escalation Exploit
2007-01-30 00:00:00
exploitpack
exploitpack
Novell Client 4.91 - NWSPOOL.dll Remote Buffer Overflow
2006-11-21 00:00:00
SSC DiskAccess NFS Client - DAPCNFSD.dll Remote Stack Buffer Overflow
2007-01-29 00:00:00
Multiple Printer Providers (Spooler Service) - Local Privilege Escalation
2007-01-29 00:00:00
cert
cert
Novell NetWare Client for Windows OpenPrinter() function vulnerable to buffer overflow
2006-12-19 00:00:00
zdi
zdi
Novell Netware Client Print Provider Buffer Overflow Vulnerability
2006-11-29 00:00:00
saint
saint
Novell Client nwspool.dll buffer overflow
2006-12-01 00:00:00
Novell Client nwspool.dll buffer overflow
2006-12-01 00:00:00
Novell Client nwspool.dll buffer overflow
2006-12-01 00:00:00
cve
cve
CVE-2006-5854
2006-12-03 19:28:00
CVE-2007-2954
2007-08-31 22:17:00
CVE-2006-6114
2006-11-26 22:07:00
canvas
canvas
Immunity Canvas: NWSPOOL_A
2006-12-03 19:28:00
nessus
nessus
Novell NetWare Client Print Provider (nwspool.dll) Multiple Function Overflow
2006-11-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell Client Print Provider Multiple Functions Buffer Overflow (CVE-2006-5854)
2007-02-07 00:00:00
exploitdb
exploitdb
SSC DiskAccess NFS Client - &#039;DAPCNFSD.dll&#039; Remote Stack Buffer Overflow
2007-01-29 00:00:00
Multiple Printer Providers (Spooler Service) - Local Privilege Escalation
2007-01-29 00:00:00
Novell Client 4.91 - &#039;NWSPOOL.dll&#039; Remote Buffer Overflow
2006-11-21 00:00:00
prion
prion
Stack overflow
2007-08-31 22:17:00
Stack overflow
2008-02-13 21:00:00
Buffer overflow
2007-01-31 21:28:00

0.928 High

EPSS

Percentile

98.8%

JSON
Related for SAINT:5A002CDFE7ACBD0171861D507899EDD7
securityvulns3seebug3exploitpack3cert1zdi1saint3cve5canvas1nessus1checkpoint_advisories1exploitdb3prion3