Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:2380
HistoryNov 02, 2007 - 12:00 a.m.

Novell BorderManager Client Trust进程堆溢出漏洞

2007-11-0200:00:00
Root
www.seebug.org
17

0.409 Medium

EPSS

Percentile

96.9%

JSON

BUGTRAQ ID: 26285
CVE(CAN) ID: CVE-2007-5767

Novell BorderManager是Internet防火墙、VPN等安全工具套件。

Novell BorderManager的Client Trust应用实现上存在堆溢出漏洞,远程攻击者可能利用此漏洞控制服务器。

Novell BorderManager中默认监听于UDP 3024 端口的Client Trust应用(clntrust.exe)没有正确的验证用户请求,Client Trust进程会一直拷贝用户提供的Novell树名称,直到遇到宽字符反斜杠或空字符。如果数据中没有上述字符的话,进程会拷贝过多的数据,然后在调用wsprintfA时会溢出静态缓冲区。

Novell BorderManager 3.8
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://download.novell.com/Download?buildid=AuOWp2Xsvmc~” target=“_blank”>http://download.novell.com/Download?buildid=AuOWp2Xsvmc~</a>

Related

prion 1
zdi 1
securityvulns 2
cve 1
cvelist 1
prion
prion
Heap overflow
2007-11-02 23:46:00
zdi
zdi
Novell Client Trust Heap Overflow Vulnerability
2007-10-31 00:00:00
securityvulns
securityvulns
Novel Border Manager Client Trust buffer overflow
2007-11-02 00:00:00
ZDI-07-064: Novell Client Trust Heap Overflow Vulnerability
2007-11-02 00:00:00
cve
cve
CVE-2007-5767
2007-11-02 23:46:00
cvelist
cvelist
CVE-2007-5767
2007-11-02 23:00:00

0.409 Medium

EPSS

Percentile

96.9%

JSON
Related for SSV:2380
prion1zdi1securityvulns2cve1cvelist1