805 matches found
CVE-2010-4227
The CVE concerns Novell Netware 6.5’s XNFS.NLM (default UDP port 1234). The xdrDecodeString function accepts a signed length and writes NULL terminator, enabling a stack-based buffer overflow that can lead to remote code execution or a denial of service. Published details confirm a remote attacke...
CVE-2010-4227
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service abend or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow...
Novell Netware RPC XNFS xdrDecodeString Vulnerability
Exploit for linux platform in category dos / poc !/usr/bin/ruby Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=24&Itemid=24 require 'socket' netwareserver = ARGV0 targetport = ARGV1 || 1234 beepbeep= "\x1c\xd1\xef\xab" + XID "\x00\x00\x00\x00" + Message Type:...
Novell Netware - RPC XNFS xdrDecodeString
Novell Netware - RPC XNFS xdrDecodeString !/usr/bin/ruby Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=24&Itemid=24 require 'socket' netwareserver = ARGV0 targetport = ARGV1 || 1234 beepbeep= "\x1c\xd1\xef\xab" + XID "\x00\x00\x00\x00" + Message Type: Call 0...
Novell Netware integer overflow
Integer overflow on XNFS UDP/1234 processing...
Novell Netware RPC XNFS xdrDecodeString Code Execution
!/usr/bin/ruby Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=24&Itemid=24 require 'socket' netwareserver = ARGV0 targetport = ARGV1 || 1234 beepbeep= "\x1c\xd1\xef\xab" + XID "\x00\x00\x00\x00" + Message Type: Call 0 "\x00\x00\x00\x02" + RPC Version: 2...
Novell Netware - RPC XNFS xdrDecodeString
!/usr/bin/ruby Source: http://www.protekresearchlab.com/index.php?option=comcontent&view=article&id=24&Itemid=24 require 'socket' netwareserver = ARGV0 targetport = ARGV1 || 1234 beepbeep= "\x1c\xd1\xef\xab" + XID "\x00\x00\x00\x00" + Message Type: Call 0 "\x00\x00\x00\x02" + RPC Version: 2...
ZDI-11-090: Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability
ZDI-11-090: Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-090 February 18, 2011 -- CVE ID: CVE-2010-4227 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Novell -- Affected Products: Novell Netware --...
Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Netware. Authentication is not required to exploit this vulnerability. The flaw exists within the XNFS.NLM component which listens by default on UDP port 1234. When handling the an NFS RPC...
FreeBSD : mediawiki -- multiple vulnerabilities (8d04cfbd-344d-11e0-8669-0025222482c5)
Medawiki reports : An arbitrary script inclusion vulnerability was discovered. The vulnerability only allows execution of files with names ending in '.php' which are already present in the local filesystem. Only servers running Microsoft Windows and possibly Novell Netware are affected. Despite...
CVE-2011-0537
Multiple directory traversal vulnerabilities in 1 languages/Language.php and 2 includes/StubObject.php in MediaWiki 1.8.0 and other versions before 1.16.2, when running on Windows and possibly Novell Netware, allow remote attackers to include and execute arbitrary local PHP files via vectors...
CVE-2011-0537
Multiple directory traversal vulnerabilities in 1 languages/Language.php and 2 includes/StubObject.php in MediaWiki 1.8.0 and other versions before 1.16.2, when running on Windows and possibly Novell Netware, allow remote attackers to include and execute arbitrary local PHP files via vectors...
Metasploit 3.5.1 adds Cisco device exploitation !
Metasploit now enables security professionals to exploit Cisco devices, performs passive reconnaissance through traffic analysis, provides more exploits and evaluates an organization's password security by brute forcing an ever increasing range of services. This latest release adds stealth...
NetWare 6.5 SunRPC Portmapper CALLIT Stack Buffer Overflow
$Id: pkernelcallit.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
NetWare 6.5 - SunRPC Portmapper CALLIT Stack Buffer Overflow (Metasploit)
$Id: pkernelcallit.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...
NetWare 6.5 SunRPC Portmapper CALLIT Stack Buffer Overflow
This module exploits a stack buffer overflow in the NetWare PKERNEL.NLM driver's CALLIT procedure. PKERNEL.NLM is installed by default on all NetWare servers to support NFS. The PKERNEL.NLM module runs in kernel mode so a failed exploit attempt can cause the operating system to reboot. This modul...
ZDI-10-169: Novell Netware SSHD.NLM Remote Code Execution Vulnerability
ZDI-10-169: Novell Netware SSHD.NLM Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-169 September 1, 2010 -- CVSS: 9, AV:N/AC:L/Au:S/C:C/I:C/A:C -- Affected Vendors: Novell -- Affected Products: Novell Netware -- Vulnerability Details: This vulnerability...
Novell Netware SSH buffer overflow
Buffer overflow on oversized SCP GET request...
Novell NetWare OpenSSH Buffer Overflow
The Secure Shell SSH protocol is a well-established method of secure communication in a client and server architectural model. SSH is based on the idea of a public key exchange, where a server offers a client its public key. The client then uses this key to encrypt all communication between the t...
Month Of Abysssec Undisclosed Bugs - Novell Netware
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Day 7 - Binary Analysis | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-7-novell-netware-nwftpd-rmdrnfrdele-argument-parsing-buffer-overflow/ ''' ''' Title : Novell Netware NWFTPD...