CVE-2006-5854
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
99.0%
Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 through 4.91 SP2 allow remote attackers to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | netware_client | 4.91 | cpe:2.3:a:novell:netware_client:4.91:*:*:*:*:*:*:* |
| novell | netware_client | 4.91 | cpe:2.3:a:novell:netware_client:4.91:sp1:*:*:*:*:*:* |
| novell | netware_client | 4.91 | cpe:2.3:a:novell:netware_client:4.91:sp2:*:*:*:*:*:* |
References
secunia.com/advisories/23027
securitytracker.com/id?1017263
securitytracker.com/id?1017315
support.novell.com/cgi-bin/search/searchtid.cgi?/2974765.htm
www.kb.cert.org/vuls/id/300636
www.kb.cert.org/vuls/id/653076
www.novell.com/support/search.do?cmd=displayKC&externalId=3125538&sliceId=SAL_Public
www.securityfocus.com/archive/1/453012/100/0/threaded
www.securityfocus.com/bid/21220
www.securityfocus.com/data/vulnerabilities/exploits/testlpc.c
www.vupen.com/english/advisories/2006/4631
www.zerodayinitiative.com/advisories/ZDI-06-043.html
exchange.xforce.ibmcloud.com/vulnerabilities/30461
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
99.0%