Vulnerabilities > CVE-2005-2852 - Unspecified vulnerability in Novell Netware 5.1/6.0/6.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and SP3, 5.1, and 6.0 allows remote attackers to cause a denial of service (ABEND) via an incorrect password length, as exploited by the "worm.rbot.ccc" worm.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Exploit-Db
| description | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow. CVE-2005-2852. Remote exploit for netware platform |
| id | EDB-ID:16832 |
| last seen | 2016-02-02 |
| modified | 2010-05-09 |
| published | 2010-05-09 |
| reporter | metasploit |
| source | https://www.exploit-db.com/download/16832/ |
| title | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow |
Metasploit
| description | This module exploits a stack buffer overflow in the NetWare CIFS.NLM driver. Since the driver runs in the kernel space, a failed exploit attempt can cause the OS to reboot. |
| id | MSF:EXPLOIT/NETWARE/SMB/LSASS_CIFS |
| last seen | 2020-02-29 |
| modified | 2017-07-24 |
| published | 2008-01-28 |
| references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2852 |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/netware/smb/lsass_cifs.rb |
| title | Novell NetWare LSASS CIFS.NLM Driver Stack Buffer Overflow |
References
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971821.htm
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971821.htm
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971822.htm
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971822.htm
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971832.htm
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971832.htm