Lucene search
RootSSV:2945HistoryFeb 26, 2008 - 12:00 a.m.
Novell客户端nwspool.dll EnumPrinters RPC请求远程栈溢出漏洞
2008-02-2600:00:00
Root
www.seebug.org
10
0.794 High
EPSS
Percentile
98.0%
BUGTRAQ ID: 27741
CVE(CAN) ID: CVE-2008-0639
Novell Client是允许NetWare连接到Windows的工作站软件。
Novell Client的Spooler服务(nwspool.dll)负责处理通过spoolss命名管道所提交的RPC请求,该DLL所暴露的EnumPrinters函数存在逻辑错误,允许远程攻击者通过提交恶意的RPC请求触发栈溢出,导致执行任意指令。
出现这个漏洞是由于没有正确地修复CVE-2007-6701漏洞。
Novell Client 4.91 SP4
Novell Client 4.91 SP3
Novell Client 4.91 SP2
厂商补丁:
Novell
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5008300.html” target=“_blank”>http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5008300.html</a>
Related
prion
prion
Stack overflow
2008-02-13 21:00:00
Stack overflow
2008-02-13 21:00:00
cvelist
cvelist
CVE-2008-0639
2008-02-13 20:00:00
CVE-2007-6701
2008-02-13 20:00:00
cve
cve
CVE-2008-0639
2008-02-13 21:00:00
CVE-2007-6701
2008-02-13 21:00:00
saint
saint
Novell Client 4.91 SP4 nwspool.dll buffer overflow
2007-08-10 00:00:00
Novell Client 4.91 SP4 nwspool.dll buffer overflow
2007-08-10 00:00:00
Novell Client 4.91 SP4 nwspool.dll buffer overflow
2007-08-10 00:00:00
zdi
zdi
Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability
2008-02-11 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Novell Netware Client buffer overflow
2008-02-13 00:00:00
canvas
canvas
Immunity Canvas: NWSPOOL_C
2008-02-13 21:00:00