Intrusion Prevention

Novell.ZENworks.Desktop.Management.TFTPD.Code.Execution

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Novell ZENworks Desktop Management.
The vulnerability is caused by a boundary error in the TFTPD server component, which listens by default on UDP port 69. It allows an attacker to execute arbitrary code by sending a specially crafted request to the affected service.

Affected Products

Novell ZENworks Desktop Management 7 SP1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
http://www.novell.com/products/zenworks/

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2021-04-13	18.057	Modified	Sig Added

References

SA42598

ID	27791
Created	Jul 08, 2011
Updated	May 02, 2022
CVE ID
Risk
Exploit Prediction Score	37.16%
Default Action	drop
Active
Affected OS	Linux
Affected App	Novell
Profile Type	BufferErrors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Novell.ZENworks.Desktop.Management.TFTPD.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Novell.ZENworks.Desktop.Management.TFTPD.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center