Info

Disclosure

Feb 11, 2008

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Feb 07, 2008

Description

A remote overflow exists in the Novell Client. The flaw is in nwspool.dll with regards to its handling of the EnumPrinters() function. With a specially crafted request, an attacker can remotely execute arbitrary code, resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch
Exploit: Exploit Unknown
Disclosure: Vendor Verified, Coordinated Disclosure

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Novell has released a patch to address this vulnerability.

Products

Novell, Inc.	Client	4.91 SP4
		4.91 SP2
		4.91 SP3

References

Security Tracker: 1019366
CVE ID: 2008-0639 (see also: NVD)
Bugtraq ID: 27741
Secunia Advisory ID: 28895
FrSIRT Advisory: ADV-2008-0496
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2008-02/0149.html
Vendor Specific News/Changelog Entry: http://download.novell.com/Download?buildid=SszG22IIugM~
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5008300.h ......
Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-08-005.html

Credit

Avosani Gabriele -
Avosani Gabriele -
iDEFENSE - idlabs-advisoriesidefense.com - iDEFENSE

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Novell, Inc.

Client

References

Credit