NetWare Stack Overflow in 'CIFS.NLM' Lets Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1024145 |
|
SecurityTracker URL: http://securitytracker.com/id?1024145
|
|
CVE Reference:
CVE-2010-2351
(Links to External Site)
|
Date: Jun 24 2010
|
Impact:
Execution of arbitrary code via network, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 6.5 SP8 and prior versions
|
Description:
A vulnerability was reported in NetWare. A remote user can execute arbitrary code on the target system.
A remote user can send a 'Session Setup AndX' packet via SMB with a specially crafted 'AccountName' value to trigger a stack overflow and execute arbitrary code on the target system. The code will run with the privileges of the target service.
The vendor was notified on February 10, 2010.
The original advisory is available at:
http://www.stratsec.net/Research/Advisories/SS-2010-006-Netware-SMB-Remote-Stack-Overflow
Laurent Gaffie of stratsec reported this vulnerability.
|
Impact:
A remote user can execute arbitrary code on the target system.
|
Solution:
The vendor has issued a fix (NSS Update for NetWare 6.5 Support Pack 8 2.0).
The vendor's advisory is available at:
http://download.novell.com/Download?buildid=tMWCI1cdI7s~
|
Vendor URL: download.novell.com/Download?buildid=tMWCI1cdI7s~ (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 24 Jun 2010 04:50:47 +0000
Subject: Novell NetWare
|
http://www.stratsec.net/Research/Advisories/SS-2010-006-Netware-SMB-Remote-Stack-Overflow
CVE-2010-2351
|
|
