CVE-2007-3207 - Buffer overflow in the NFS mount daemon (XNFS.NLM) in Novell NetWare 6.5 SP6, and probably earlier,

CVE-2007-3207

Summary

Buffer overflow in the NFS mount daemon (XNFS.NLM) in Novell NetWare 6.5 SP6, and probably earlier, allows remote attackers to cause a denial of service (abend) via a long path in a mount request. The vendor has addressed this issue through a product update: http://download.novell.com/SummaryFree.jsp?buildid=8XdJVBDYifk~

References

Vulnerable Configurations

cpe:2.3:a:novell:client:6.5_sp6:*:*:*:*:*:*:*
cpe:2.3:a:novell:client:6.5_sp6:*:*:*:*:*:*:*

CVSS

Base:	7.1 (as of 29-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:C

refmap via4

bid	24489
cert-vn	VU#578105
confirm	http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5004900.html https://secure-support.novell.com/KanisaPlatform/Publishing/23/3008097_f.SAL_Public.html
osvdb	37317
secunia	25697
vupen	ADV-2007-2221
xf	netware-nfs-mount-dos(34878)

Last major update

29-07-2017 - 01:32

Published

18-06-2007 - 10:30

Last modified

29-07-2017 - 01:32