Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2469

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2469
Last Modified 05 Sep 2008 04:51:50
Published 20 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2469

Summary

Stack-based buffer overflow in the NMAP Agent for Novell NetMail 3.52C and possibly earlier versions allows local users to execute arbitrary code via a long user name in the USER command.

Vulnerable Systems

Application

  • Novell Netmail 3.5.2


References

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972438.htm

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972433.htm

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972340.htm

MISC - http://secunia.com/secunia_research/2005-23/advisory/

SECUNIA - 15925

XF - netmail-nmap-user-bo(22727)

BID - 15080

OSVDB - 19916

SECTRACK - 1015048

FULLDISC - 20051012 Secunia Research: Novell NetMail NMAP Agent "USER" Buffer Overflow Vulnerability


Last Updated: 27 May 2016 10:40:32