Intrusion Prevention

Novell.Netware.Client.Print.Stack.Buffer.Overflow

Description

Novell Client NWSPOOL.DLL has a buffer overflow vulnerability. A remote attacker could execute arbitrary code on a vulnerable system by sending crafted data through an EnumPrinterDrivers request.

Affected Products

Novell Client version 4.91 SP4 and prior.

Impact

System compromise, remote code execution.

Recommended Actions

Apply patch, available from the Web site.
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5005400.html

CVE References

CVE-2007-6701

Other References

ZDI-07-045