Intrusion Prevention

Novell.Netware.Client.Print.Provider.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer-overflow vulnerability in a print provider installed by Novell Netware Client.
The vulnerability is in the nwspool.dll library's failure to properly handle overly long arguments to the EnumPrinters() and OpenPrinter() functions. A remote attacker may exploit this to execute arbitrary code.

Affected Products

Novell Netware Client 4.91
Novell Netware Client 4.91 SP1
Novell Netware Client 4.91 SP2

Impact

System compromise: Arbitrary code execution.

CVE References

CVE-2008-0639 CVE-2006-5854