CVE-2007-5767

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

30.8%

top 3.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Bordermanager

Timeline

PublishedNov 2

Latest updateMay 1

Description

Heap-based buffer overflow in the Client Trust application (clntrust.exe) in Novell BorderManager 3.8 before Update 1.5 allows remote attackers to execute arbitrary code via a validation request in which the Novell tree name is not properly delimited with a wide-character backslash or NULL character.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDnovell/bordermanager3.8

Patches

Patch: download.novell.com ↗Patch: secunia.com ↗Patch: download.novell.com ↗

🔴Vulnerability Details

GHSA

GHSA-m2pg-wrmf-wpqf: Heap-based buffer overflow in the Client Trust application (clntrust↗2022-05-01

▶

CVEList

CVE-2007-5767: Heap-based buffer overflow in the Client Trust application (clntrust↗2007-11-02

▶