Intrusion Prevention

Novell.ZENworks.Management.Buffer.Overflow

Description

This indicates an attempt to exploit a vulnerability in Novell ZENworks Remote Management.
This vulnerability is a result of multiple stack-based and heap-based buffer overflows in the Remote Management authentication (zenrem32.exe). As a result, a remote attacker may be able to execute arbitrary code via type 1 and type 2 authentication requests. A successful exploit may result in execution of arbitrary code.

Affected Products

Novell ZENworks Server Management 6.5
Novell ZENworks Remote Management
Novell ZENworks for Servers 3.2
Novell ZENworks for Desktops 4.0.1
Novell ZENworks for Desktops 4.0
Novell ZENworks for Desktops 3.2 SP2
Novell ZENworks Desktop Management 6.5

Impact

System compromise

Recommended Actions

The following patch is available from Novell.
http://support.novell.com/servlet/filedownload/sec/ftf/zfd401ir6rm.exe

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2024-07-22	28.830	Modified	Name:Novell. ZENworks. Management. Remote. Overflow:Novell. ZENworks. Management. Buffer. Overflow

ID	10861
Created	Sep 12, 2005
Updated	Jul 18, 2024
CVE ID
Risk
Exploit Prediction Score	80.37%
Default Action	drop
Active
Affected OS	Other
Affected App	Novell
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Novell.ZENworks.Management.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Novell.ZENworks.Management.Buffer.Overflow

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center