PT-2006-6927 · Novell · Novell Zenworks 7 Asset Management+1

Published

2006-12-05

Updated

2017-07-29

CVE-2006-6299

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Novell ZENworks 7 Asset Management (ZAM) versions before SP1 IR11 Novell ZENworks 7 Asset Management (ZAM) Collection client versions before SP1 IR11

Description The issue is related to an integer overflow in Msg.dll, which can lead to a heap-based buffer overflow. This allows remote attackers to execute arbitrary code via crafted packets.

Recommendations For Novell ZENworks 7 Asset Management (ZAM) versions before SP1 IR11, update to SP1 IR11 or later to resolve the issue. For Novell ZENworks 7 Asset Management (ZAM) Collection client versions before SP1 IR11, update the Collection client to SP1 IR11 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6299

Affected Products

Novell Zenworks 7 Asset Management

Novell Zenworks 7 Asset Management (Zam) Collection Client

PT-2006-6927 · Novell · Novell Zenworks 7 Asset Management+1

CVE-2006-6299

Related Identifiers

Affected Products

References · 10