CVE-2006-2327 Information

Feb 14, 2021 cve

Description

Multiple integer overflows in the DPRPC library (DPRPCNLM.NLM) NDPS/iPrint module in Novell Distributed Print Services in Novell NetWare 6.5 SP3 SP4 and SP5 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements which triggers the overflows in the ndps_xdr_array function.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/046048.html http://securitytracker.com/id?1016068 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973700.htm http://www.hustlelabs.com/novell_ndps_advisory.pdf http://www.osvdb.org/25433 http://www.securityfocus.com/archive/1/434017/100/0/threaded http://www.securityfocus.com/bid/17922 http://www.vupen.com/english/advisories/2006/1740 https://exchange.xforce.ibmcloud.com/vulnerabilities/26314

Share on: