CVE-2005-1543

Sažetak

Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.

Reference

http://marc.info/?l=bugtraq&m=111645317713662&w=2
http://secunia.com/advisories/15433
http://securitytracker.com/id?1014005
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10097644.htm
http://www.rem0te.com/public/images/zen.pdf
http://www.securityfocus.com/bid/13678
http://www.vupen.com/english/advisories/2005/0571
https://exchange.xforce.ibmcloud.com/vulnerabilities/20639
https://exchange.xforce.ibmcloud.com/vulnerabilities/20644
https://exchange.xforce.ibmcloud.com/vulnerabilities/20645

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:32

Objavljeno

25-05-2005 - 04:00