Novell ZENworks Configuration Management Preboot Service 0x21 Buffer Overflow
Severity: : Critical
Advisory Date: 21 lipca 2015
DESCRIPTION
Novell ZENworks Configuration Management is prone to a stack-based buffer-overflow vulnerability because the application fails to perform adequate boundary-checks on user-supplied data. An attacker can leverage this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will compromise the affected application. Failed exploit attempts will result in a denial-of-service condition.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005099
Trend Micro Deep Security DPI Rule Name: 1005099 - Novell ZENworks Configuration Management Preboot Service 0x21 Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- Novell ZENworks Configuration Management