Trend Micro Security

Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow

  危険度: : 緊急
  CVE識別番号: CVE-2008-0639

  概要

Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE: this issue exists because of an incomplete fix for CVE-2007-6701.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1001822
  Trend Micro Deep Security DPI Rule Name: 1001822 - Novell Client nwspool.dll EnumPrinters Function Stack Buffer Overflow

  影響を受けるソフトウェア

  • Novell Novell client 4.91