Vulnerability Name:

CVE-2007-3207 (CCN-34878)

Assigned:2007-06-13
Published:2007-06-13
Updated:2017-07-29
Summary:Buffer overflow in the NFS mount daemon (XNFS.NLM) in Novell NetWare 6.5 SP6, and probably earlier, allows remote attackers to cause a denial of service (abend) via a long path in a mount request.
The vendor has addressed this issue through a product update: http://download.novell.com/SummaryFree.jsp?buildid=8XdJVBDYifk~
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:7.1 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C)
5.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2007-3207

Source: OSVDB
Type: UNKNOWN
37317

Source: CCN
Type: SA25697
Novell NetWare XNFS Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
25697

Source: CCN
Type: Novell Web site - Document ID: 5004900
XNFS.NLM - abend fix for mount request overflow

Source: CONFIRM
Type: UNKNOWN
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5004900.html

Source: CCN
Type: US-CERT VU#578105
Novell NetWare NFS denial of service vulnerability

Source: CERT-VN
Type: US Government Resource
VU#578105

Source: CCN
Type: OSVDB ID: 37317
Novell NetWare NFS Mount Daemon (XNFS.NLM) Mount Request Path Name Remote Overflow

Source: BID
Type: Patch
24489

Source: CCN
Type: BID-24489
Novell NetWare XNFS.NLM Remote Denial Of Service Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2007-2221

Source: XF
Type: UNKNOWN
netware-nfs-mount-dos(34878)

Source: XF
Type: UNKNOWN
netware-nfs-mount-dos(34878)

Source: CCN
Type: Novell Security Alert 3319127
XNFS Abend in rpcWorkerThread if nfs mount is attempted with long path

Source: CONFIRM
Type: UNKNOWN
https://secure-support.novell.com/KanisaPlatform/Publishing/23/3008097_f.SAL_Public.html

Vulnerable Configuration:Configuration 1:
  • cpe:/a:novell:client:6.5_sp6:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:novell:netware:6.5:sp6:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    novell client 6.5_sp6
    novell netware 6.5 sp6