CVE-2007-6701

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

45.5%

top 2.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Client

Timeline

PublishedFeb 13

Latest updateMay 1

Description

Multiple stack-based buffer overflows in the Spooler service (nwspool.dll) in Novell Client 4.91 SP4 for Windows allow remote attackers to execute arbitrary code via long arguments to multiple unspecified RPC functions, aka Novell bug 287919, a different vulnerability than CVE-2007-2954.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDnovell/client4.91

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: www.zerodayinitiative.com ↗

🔴Vulnerability Details

GHSA

GHSA-2gwf-q498-hprv: Multiple stack-based buffer overflows in the Spooler service (nwspool↗2022-05-01

▶

CVEList

CVE-2007-6701: Multiple stack-based buffer overflows in the Spooler service (nwspool↗2008-02-13

▶