Intrusion Prevention

Novell.Client.Print.Provider.Buffer.Overflow

Description

This indicates an attempt to exploit a Buffer Overflow vulnerability in a print provider installed by Novell Netware Client.
The vulnerability is caused by the "nwspool.dll" library's failure to properly handle overly long arguments to the "EnumPrinters()" and "OpenPrinter()" functions. A remote attacker can exploit this to execute arbitrary code.

Affected Products

Novell Netware Client 4.91
Novell Netware Client 4.91 SP1
Novell Netware Client 4.91 SP2

Impact

System compromise: Arbitrary code execution.

CVE References

CVE-2006-5854