Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2006-5854

Published: 03/12/2006 Updated: 17/10/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 760
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Netware Client

Vulnerability Summary

Multiple buffer overflows in the Spooler service (nwspool.dll) in Novell Netware Client 4.91 up to and including 4.91 SP2 allow remote malicious users to execute arbitrary code via a long argument to the (1) EnumPrinters and (2) OpenPrinter functions.

Vulnerable Product Search on Vulmon Subscribe to Product

novell netware client 4.91

Exploits

Exploit DB: Multiple Printer Providers (Spooler Service) - Local Privilege Escalation
/********************Private exploit- internal use only***************** Title: Universal exploit for vulnerable printer providers (spooler service) Vulnerability: Insecure EnumPrintersW() calls Author: Andres Tarasco Acuña - atarasco@514es Website: www514es This code should allow to gain SYSTEM privileges with the following sof ...
Exploit DB: Novell Client 4.91 - 'NWSPOOL.dll' Remote Buffer Overflow
source: wwwsecurityfocuscom/bid/21220/info Novell Client is prone to a remote buffer-overflow vulnerability Successful exploits may result in a denial-of-service condition or arbitrary code execution Remote, anonymous attackers may exploit this issue via RPC requests This issue affects Novell Client 491; other versions may also be vu ...

References

NVD-CWE-Otherhttp://www.zerodayinitiative.com/advisories/ZDI-06-043.htmlhttp://www.novell.com/support/search.do?cmd=displayKC&externalId=3125538&sliceId=SAL_Publichttp://securitytracker.com/id?1017315http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974765.htmhttp://www.securityfocus.com/bid/21220http://securitytracker.com/id?1017263http://secunia.com/advisories/23027http://www.kb.cert.org/vuls/id/300636http://www.kb.cert.org/vuls/id/653076http://www.securityfocus.com/data/vulnerabilities/exploits/testlpc.chttp://www.vupen.com/english/advisories/2006/4631https://exchange.xforce.ibmcloud.com/vulnerabilities/30461http://www.securityfocus.com/archive/1/453012/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/3220/https://www.kb.cert.org/vuls/id/300636
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook