CVE-2007-2954: Buffer Overflow
First published: Fri Aug 31 2007(Updated: )
Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2 through SP4 for Windows allow remote attackers to execute arbitrary code via certain long arguments to the (1) RpcAddPrinterDriver, (2) RpcGetPrinterDriverDirectory, and other unspecified RPC requests, aka Novell bug 300870, a different vulnerability than CVE-2006-5854.
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Novell Client | =4.91-sp3 | |
| Novell Client | =4.91-sp4 | |
| Novell Client | =4.91-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/secunia_research/2007-57/advisory/
- http://download.novell.com/Download?buildid=VOXNZb-6t_g~
- http://www.securityfocus.com/bid/25474
- http://securitytracker.com/id?1018623
- http://secunia.com/advisories/26374
- http://www.zerodayinitiative.com/advisories/ZDI-07-045/
- http://www.vupen.com/english/advisories/2007/3006
- http://osvdb.org/37321
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35824
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/author
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- vendor/novell
- canonical/novell client
- version/novell client/4.91-sp3
- version/novell client/4.91-sp4
- version/novell client/4.91-sp2