QwikSec

Security Database

CVE

CWE

Training

CVE-2008-0639

Published: Feb 13, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE: this issue exists because of an incomplete fix for CVE-2007-6701.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20080211 ZDI-08-005: Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

http://www.zerodayinitiative.com/advisories/ZDI-08-005.html

x_refsource_MISC

20080211 ZDI-08-005: Novell Client NWSPOOL.DLL EnumPrinters Stack Overflow Vulnerability

mailing-list

x_refsource_FULLDISC

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5008300.html

x_refsource_CONFIRM

http://download.novell.com/Download?buildid=SszG22IIugM~

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.