What is the severity of CVE-2009-5153?

CVE-2009-5153 has a high severity rating due to its potential for remote code execution.

How do I fix CVE-2009-5153?

To fix CVE-2009-5153, upgrade to Novell NetWare version 6.5 SP8 or later.

Who is affected by CVE-2009-5153?

CVE-2009-5153 affects users of Novell NetWare versions 6.5 SP1 through SP7.

What type of vulnerability is CVE-2009-5153?

CVE-2009-5153 is a stack buffer overflow vulnerability.

Can CVE-2009-5153 be exploited remotely?

Yes, CVE-2009-5153 can be exploited remotely by unauthenticated attackers.

Vulnerability/
CVE-2009-5153

critical

9.8

CWE

119

21/11/2018

7/8/2024

CVE-2009-5153: Buffer Overflow

First published: Wed Nov 21 2018(Updated: )

In Novell NetWare before 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated attackers to execute code, because a length field was incorrectly trusted.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Microfocus Netware	=6.5-sp4
Microfocus Netware	=6.5-sp5
Microfocus Netware	=6.5-sp7
Microfocus Netware	=6.5-sp1
Microfocus Netware	=6.5-sp2
Microfocus Netware	=6.5-sp3
Microfocus Netware	=6.5-sp6
Microfocus Netware	<=6.5

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-5153?
CVE-2009-5153 has a high severity rating due to its potential for remote code execution.
How do I fix CVE-2009-5153?
To fix CVE-2009-5153, upgrade to Novell NetWare version 6.5 SP8 or later.
Who is affected by CVE-2009-5153?
CVE-2009-5153 affects users of Novell NetWare versions 6.5 SP1 through SP7.
What type of vulnerability is CVE-2009-5153?
CVE-2009-5153 is a stack buffer overflow vulnerability.
Can CVE-2009-5153 be exploited remotely?
Yes, CVE-2009-5153 can be exploited remotely by unauthenticated attackers.

collector/nvd-historical
collector/nvd-index
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/references
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/tags
agent/source
vendor/microfocus
canonical/microfocus netware
version/microfocus netware/6.5-sp4
version/microfocus netware/6.5-sp5
version/microfocus netware/6.5-sp7
version/microfocus netware/6.5-sp1
version/microfocus netware/6.5-sp2
version/microfocus netware/6.5-sp3
version/microfocus netware/6.5-sp6
version/microfocus netware/6.5

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.