Vulnerability CVE-2007-6701

Vulnerability Name:

CVE-2007-6701 (CCN-35653)

Assigned:

2007-07-26

Published:

2007-07-26

Updated:

2017-08-08

Summary:

Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP4 for Windows allow remote attackers to execute arbitrary code via long arguments to multiple unspecified RPC functions, aka Novell bug 287919, a different vulnerability than CVE-2007-2954.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Other

References:

Source: BUGTRAQ
Type: UNKNOWN
20070806 ZDI-07-045: Novell Client NWSPOOL.DLL Stack Overflow Vulnerability

Source: MITRE
Type: CNA
CVE-2007-6701

Source: CCN
Type: SA26238
Novell Client NWSPOOL.DLL Buffer Overflow Vulnerability

Source: SECUNIA
Type: Patch, Vendor Advisory
26238

Source: CCN
Type: SECTRACK ID: 1018471
Novell Client `NWSPOOL.DLL` Stack Overflow Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1018471

Source: CCN
Type: Novell Technical Information Document ID: 5005400
Novell Client 4.91 Post-SP4 NWSPOOL.DLL

Source: CONFIRM
Type: UNKNOWN
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5005400.html

Source: BID
Type: Exploit, Patch
25092

Source: CCN
Type: BID-25092
Novell Client NWSPOOL.DLL Unspecified Buffer Overflow Vulnerability

Source: MISC
Type: Patch
http://www.zerodayinitiative.com/advisories/ZDI-07-045.html

Source: XF
Type: UNKNOWN
novell-spooler-bo(35653)

Source: XF
Type: UNKNOWN
novell-nwspool-unspecified(35653)

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows:*:*:*:*:*:*:*:*

AND

cpe:/a:novell:client:4.91:sp4:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:novell:netware_client:4.91:sp4:*:*:*:*:*:*

Denotes that component is vulnerable

BACK