CyberSec.Space Logo
返回 CVE 浏览器

CVE-2006-2304

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0450%
EPSS Percentile4.92th
Published2006年5月11日
Last Modified2026年4月16日

Vulnerability Description

Multiple integer overflows in the DPRPC library (DPRPCW32.DLL) in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndps_xdr_array function. NOTE: this was originally reported to be a buffer overflow by Novell, but the original cause is an integer overflow.

Affected Platforms (CPE)

📦
Novell

Client

= 4.83
📦
Novell

Client

= 4.90
📦
Novell

Client

= 4.91

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/046048.html
🔗 http://secunia.com/advisories/20048
🔗 http://securitytracker.com/id?1016052
🔗 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973719.htm
🔗 http://www.hustlelabs.com/novell_ndps_advisory.pdf
🔗 http://www.osvdb.org/25429
🔗 http://www.securityfocus.com/archive/1/434017/100/0/threaded
🔗 http://www.securityfocus.com/bid/17931

相关漏洞威胁

CVE-2020-2949110.0

Dell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker...

CVE-2019-1665010.0

On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same ...

CVE-2026-4638910.0

UDS Identity Config builds the Keycloak configuration image (realm, plugins, theme, truststore, JARs) consumed by UDS Core's Ident...

CVE-2020-738810.0

Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authenticati...