CVE-2007-2954Improper Restriction of Operations within the Bounds of a Memory Buffer in Client

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
10.0CRITICALNVD
CNA7.5
EPSS
22.8%
top 4.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Client
Timeline
PublishedAug 31
Latest updateMay 1

Description

Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2 through SP4 for Windows allow remote attackers to execute arbitrary code via certain long arguments to the (1) RpcAddPrinterDriver, (2) RpcGetPrinterDriverDirectory, and other unspecified RPC requests, aka Novell bug 300870, a different vulnerability than CVE-2006-5854.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDnovell/client4.91

Patches

Patch: download.novell.comPatch: secunia.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-mwg2-x42f-3jxf: Multiple stack-based buffer overflows in the Spooler service (nwspool2022-05-01
CVEList
CVE-2007-2954: Multiple stack-based buffer overflows in the Spooler service (nwspool2007-08-31
CVE-2007-2954 — Novell Client vulnerability | cvebase