Vulnerabilities > CVE-2005-2852 - Denial-Of-Service vulnerability in Novell Netware 5.1/6.0/6.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and SP3, 5.1, and 6.0 allows remote attackers to cause a denial of service (ABEND) via an incorrect password length, as exploited by the "worm.rbot.ccc" worm.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Exploit-Db
| description | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow. CVE-2005-2852. Remote exploit for netware platform |
| id | EDB-ID:16832 |
| last seen | 2016-02-02 |
| modified | 2010-05-09 |
| published | 2010-05-09 |
| reporter | metasploit |
| source | https://www.exploit-db.com/download/16832/ |
| title | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow |
Metasploit
| description | This module exploits a stack buffer overflow in the NetWare CIFS.NLM driver. Since the driver runs in the kernel space, a failed exploit attempt can cause the OS to reboot. |
| id | MSF:EXPLOIT/NETWARE/SMB/LSASS_CIFS |
| last seen | 2020-02-29 |
| modified | 2017-07-24 |
| published | 2008-01-28 |
| references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2852 |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/netware/smb/lsass_cifs.rb |
| title | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow |