CVE-2005-1543: Buffer Overflow
First published: Wed May 25 2005(Updated: )
Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Micro Focus ZENworks | =6.5 | |
| Novell ZENworks Desktop Management | =3.2-sp2 | |
| Novell ZENworks Desktop Management | =4.0 | |
| Novell ZENworks Desktop Management | =4.0.1 | |
| Novell ZENworks Remote Management | ||
| Novell ZENworks Server Management | =6.5 | |
| Novell ZENworks | =3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.rem0te.com/public/images/zen.pdf
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10097644.htm
- http://www.securityfocus.com/bid/13678
- http://securitytracker.com/id?1014005
- http://secunia.com/advisories/15433
- http://www.vupen.com/english/advisories/2005/0571
- http://marc.info/?l=bugtraq&m=111645317713662&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20645
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20644
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20639
Frequently Asked Questions
What is the severity of CVE-2005-1543?
CVE-2005-1543 is classified as a critical vulnerability due to the potential for remote code execution.
What software is affected by CVE-2005-1543?
CVE-2005-1543 affects Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management.
How do I fix CVE-2005-1543?
To fix CVE-2005-1543, apply the latest patches and updates provided by Novell for the affected ZENworks products.
Can CVE-2005-1543 be exploited remotely?
Yes, CVE-2005-1543 can be exploited by remote attackers to execute arbitrary code on affected systems.
What are the potential impacts of CVE-2005-1543?
The potential impacts of CVE-2005-1543 include unauthorized access to sensitive data and complete system compromise.
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/novell
- canonical/micro focus zenworks
- version/micro focus zenworks/6.5
- canonical/novell zenworks desktop management
- version/novell zenworks desktop management/3.2-sp2
- version/novell zenworks desktop management/4.0
- version/novell zenworks desktop management/4.0.1
- canonical/novell zenworks remote management
- canonical/novell zenworks server management
- version/novell zenworks server management/6.5
- canonical/novell zenworks
- version/novell zenworks/3.2