virus logo Intrusion Prevention

Novell.NetMail.AntiVirus.Agent.Buffer.Overflow

description-logoDescription

This indicates an attempt to exploit a heap based buffer overflow in Novell NetMail.
The vulnerability is caused by failure to check user input in AntiVirus Agent. It may allow remote attackers to execute arbitrary code via a crafted tcp packet sent to the avirus.exe service.

affected-products-logoAffected Products

Novell NetMail 3.52 E
Novell NetMail 3.52 D
Novell NetMail 3.52 C1
Novell NetMail 3.52 C
Novell NetMail 3.52 B
Novell NetMail 3.52 A
Novell NetMail 3.52
Novell NetMail 3.52e-ftfl
Novell NetMail 3.52e _FTF2
Messaging Architects M+Netmail 3.52

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply patch, available from the website:
Messaging Architects M+Netmail 3.52
Messaging Architects M+NetMail 3.5.2F Patch for Linux
Messaging Architects M+NetMail 3.5.2F Patch for NetWare
Messaging Architects M+NetMail 3.5.2F Patch for Windows

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.zerodayinitiative.com/advisories/ZDI-07-072.html http://secunia.com/advisories/27974/
ID 15187
Created Dec 18, 2007
Updated Jan 13, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2007-6302
Exploit Prediction Score 37.37%
Default Action pass
Active
Affected OS Windows
Affected App Novell