Signature Detail
Short Name |
APP:NOVELL:ZENWORKS-MSG-DLL-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Novell ZENworks Asset Management Msg.dll Buffer Overflow |
Release Date |
2010/09/17 |
Update Number |
1775 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Novell ZENworks Asset Management Msg.dll Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Novell ZENworks Asset Management. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Novell ZENworks Asset Management is prone to an integer-overflow vulnerability because it fails to properly validate user-supplied data. An attacker can exploit this vulnerability to execute arbitrary code in the context of the application. A successful attack could result in the complete compromise of the computer. Failed attempts will likely cause denial-of-service conditions. Novell ZENworks Asset Management 7.0 SP1 is vulnerable; other versions may also be affected.
Affected Products
- Novell ZENworks Asset Management 7.0 SP1
References
- BugTraq: 21395
- BugTraq: 21400
- CVE: CVE-2006-6299