The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
Max CVSS
10.0
EPSS Score
94.03%
Published
2011-02-25
Updated
2018-10-10
Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.
Max CVSS
10.0
EPSS Score
45.07%
Published
2010-06-21
Updated
2018-10-30
2 vulnerabilities found