Info

Disclosure

Oct 17, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

OpenWBEM contains multiple buffer overflows that may allow a remote attacker to execute arbitrary code. No further details have been provided.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Contact your vendor for an appropriate upgrade. An upgrade is required as there are no known workarounds.

Products

Dan Nuffer

OpenWBEM

Unknown or Unspecified

References

Bugtraq ID: 15121
Secunia Advisory ID: 17176 17244
CVE ID: 2005-3297 (see also: NVD) 2005-3298 (see also: NVD)
ISS X-Force ID: 22749
Other Advisory URL: http://lists.suse.com/archive/suse-security-announce/2005-Oct/0005.html
http://www.novell.com/linux/security/advisories/2005_60_OpenWBEM.html
Vendor URL: http://openwbem.sourceforge.net/
Keyword: SUSE-SA:2005:060

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218