2 matches found
ZDI-07-072: Novell Netmail AntiVirus Agent Multiple Overflow Vulnerabilities
ZDI-07-072: Novell NetMail AntiVirus Agent Multiple Heap Overflow Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-07-072.html December 10, 2007 -- CVE ID: CVE-2007-6302 -- Affected Vendor: Novell -- Affected Products: NetMail 3.5.2 -- TippingPointTM IPS Customer Protection:...
CVE-2007-6302
The vulnerability CVE-2007-6302 affects Novell NetMail 3.5.2 (NetMail with AntiVirus agent) via multiple heap-based overflows in avirus.exe. The root cause is that the avirus.exe service reads a user‑supplied ASCII integer as an argument to a memory allocation, then adds to that value without pro...