Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1543

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1543
Last Modified 07 Mar 2011 09:22:09
Published 25 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1543

Summary

Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.

Vulnerable Systems

Application

  • Novell Zenworks 6.5

  • Novell Zenworks Desktops 3.2

  • Novell Zenworks Desktops 4.0

  • Novell Zenworks Desktops 4.0.1

  • Novell Zenworks Remote Management

  • Novell Zenworks Server Management 6.5

  • Novell Zenworks Servers 3.2


References

XF - novell-zenwork-remote-management-2-bo(20645)

XF - novell-zenwork-remote-management-1-bo(20644)

XF - novell-zenwork-remote-management-bo(20639)

VUPEN - ADV-2005-0571

BID - 13678

MISC - http://www.rem0te.com/public/images/zen.pdf

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/10097644.htm

SECTRACK - 1014005

SECUNIA - 15433

BUGTRAQ - 20050518 NOVELL ZENWORKS MULTIPLE =?utf-8?Q?REM=C3=98TE?= STACK & HEAP OVERFLOWS


Last Updated: 27 May 2016 10:40:12