Users of Novell Webaccess please be advised of a stack overflow vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
PRL-2010-05: {PRL} Novell Groupwise Webaccess Stack Overflow
The user Proxy feature of Novell GroupWise WebAccess is vulnerable to
a stack overflow exploit. An authenticated user could potentially
trigger and execute arbitrary code with "Root" or "SYSTEM" rigths on
compromise server. To overwrite the stack, 1294 byte have to been sent
to the user proxy feature.
Read more at www.criticalwatch.com
See this Amp at http://bit.ly/cBPwBA
No comments:
Post a Comment