Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5667

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-5667
Last Modified 07 Mar 2011 10:01:06
Published 13 Nov 2007 08:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5667

Summary

NWFILTER.SYS in Novell Client 4.91 SP 1 through SP 4 for Windows 2000, XP, and Server 2003 makes the \.\nwfilter device available for arbitrary user-mode input via METHOD_NEITHER IOCTLs, which allows local users to gain privileges by passing a kernel address as an argument and overwriting kernel memory locations.

Vulnerable Systems

Application

  • Novell Client 4.91


References

CONFIRM - https://secure-support.novell.com/KanisaPlatform/Publishing/98/3260263_f.SAL_Public.html

SECUNIA - 27678

VUPEN - ADV-2007-3846

OSVDB - 40867

IDEFENSE - 20071112 Novell NetWare Client NWFILTER.SYS Local Privilege Escalation Vulnerability

XF - novell-client-nwfilter-privilege-escalation(38434)

SECTRACK - 1018943

BID - 26420


Last Updated: 27 May 2016 10:46:14