CVE-2007-6302: Buffer Overflow
First published: Mon Dec 10 2007(Updated: )
Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Novell NetMail | =3.5.2-c | |
| Novell NetMail | =3.5.2-d | |
| Novell NetMail | =3.5.2-b | |
| Novell NetMail | =3.5.2-c1 | |
| Novell NetMail | =3.5.2-a | |
| Novell NetMail | =3.5.2-e-ftfl |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.messagingarchitects.com/en/support/mplusnetmail/docs/readme.pdf
- https://secure-support.novell.com/KanisaPlatform/Publishing/990/3639135_f.SAL_Public.html
- http://secunia.com/advisories/27974
- http://www.zerodayinitiative.com/advisories/ZDI-07-072.html
- http://www.securityfocus.com/bid/26753
- http://www.securitytracker.com/id?1019063
- http://www.vupen.com/english/advisories/2007/4112
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38909
- http://www.securityfocus.com/archive/1/484843/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/author
- agent/references
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/novell
- canonical/novell netmail
- version/novell netmail/3.5.2-c
- version/novell netmail/3.5.2-d
- version/novell netmail/3.5.2-b
- version/novell netmail/3.5.2-c1
- version/novell netmail/3.5.2-a
- version/novell netmail/3.5.2-e-ftfl