CVE-2017-12787

Name of the Vulnerable Software and Affected Versions NoviWare versions through NW400.2.6

Description The issue is caused by a stack-based buffer overflow in the ACL component of the NoviWare operating system. This can be exploited by a remote attacker using specially crafted network packets containing operating system commands, potentially allowing the execution of arbitrary code when ACL changes are applied. The vulnerability can be leveraged by remote, unauthenticated attackers to gain privileged code execution on the switch.

Recommendations For NoviWare versions through NW400.2.6, consider restricting access to the ACL modification functionality until a patch is available, and avoid using the novi process manager daemon service for applying ACL changes to prevent potential exploitation. As a temporary workaround, limit the exposure of the network interface of the novi process manager daemon service to minimize the risk of remote, unauthenticated attacks.