CVE-2006-2327

Name of the Vulnerable Software and Affected Versions Novell NetWare versions 6.5 SP3 through 6.5 SP5

Description The issue is related to multiple integer overflows in the DPRPC library, specifically in the NDPS/iPrint module of Novell Distributed Print Services. This occurs when an XDR encoded array with a field specifying a large number of elements is processed, triggering overflows in the ndps xdr array function. This can allow remote attackers to execute arbitrary code.

Recommendations For Novell NetWare versions 6.5 SP3 through 6.5 SP5, consider restricting access to the vulnerable NDPS/iPrint module until a patch is available. As a temporary workaround, avoid using the ndps xdr array function in the DPRPC library to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.