Lucene search

[email protected]NVD:CVE-2006-2327

HistoryMay 12, 2006 - 12:02 a.m.

CVE-2006-2327

2006-05-1200:02:00

CWE-189

[email protected]

web.nvd.nist.gov

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

7.7 High

AI Score

Confidence

High

0.658 Medium

EPSS

Percentile

97.9%

JSON

Multiple integer overflows in the DPRPC library (DPRPCNLM.NLM) NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3, SP4, and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndps_xdr_array function.

Affected configurations

NVD

Node

novellnetwareMatch6.5

novellnetwareMatch6.5sp1

novellnetwareMatch6.5sp1.1a

novellnetwareMatch6.5sp1.1b

novellnetwareMatch6.5sp2

novellnetwareMatch6.5sp3

novellnetwareMatch6.5sp4

novellnetwareMatch6.5sp5

References

lists.grok.org.uk/pipermail/full-disclosure/2006-May/046048.html

securitytracker.com/id?1016068

support.novell.com/cgi-bin/search/searchtid.cgi?/2973700.htm

www.hustlelabs.com/novell_ndps_advisory.pdf

www.osvdb.org/25433

www.securityfocus.com/archive/1/434017/100/0/threaded

www.securityfocus.com/bid/17922

www.vupen.com/english/advisories/2006/1740

exchange.xforce.ibmcloud.com/vulnerabilities/26314

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

7.7 High

AI Score

Confidence

High

0.658 Medium

EPSS

Percentile

97.9%

JSON

Related for NVD:CVE-2006-2327

checkpoint_advisories1 cve1 cvelist1 prion1