CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
99.5%
Added: 03/02/2006
CVE: CVE-2005-1543
BID: 13678
OSVDB: 16698
Novell ZENworks is a resource management solution consisting of a management server and management agents.
The Novell ZENworks Remote Management service is affected by a buffer overflow when processing authentication requests. An attacker could execute arbitrary commands by sending a specially crafted type 1 authentication request containing a long password.
Apply the fix referenced in TID 10097644.
[http://marc.theaimsgroup.com/?l=bugtraq&m=111645317713662&w=2 ](<http://marc.theaimsgroup.com/?l=bugtraq&m=111645317713662&w=2
>)
Exploit works on Novell ZENworks Remote Management Agent 6.5.
Windows