Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:NOVELL:ZENWORKS-CONTENT-LEN

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 Novell ZENworks Malformed Content Length

Release Date

 2006/02/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Novell ZENworks Malformed Content Length


This signature detects attempts to exploit a known vulnerability in Novell Open Enterprise Server Remote Manager (novell-nrm) in Novell SUSE Linux Enterprise Server 9. Attackers can send a HTTP POST request with a negative Content-Length parameter; a successful attack can cause a heap-base buffer overflow and allow arbitrary code execution.

Extended Description

Novell Remote Manager (novell-nrm) is prone to a remotely exploitable heap overflow vulnerability. This issue may be triggered by a malicious HTTP request header. Successful exploitation will allow for arbitrary code execution in the context of the application. Novell Remote Manager ships with the SuSE Open Enterprise Server only.

Affected Products

  • SuSE Open-Enterprise-Server 9.0.0

References

  • BugTraq: 16226
  • CVE: CVE-2005-3655
  • URL: http://www.novell.com/linux/security/advisories/2006_02_novellnrm.html
  • URL: http://www.idefense.com/intelligence/vulnerabilities/display.php?id=371

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out