Vigil@nce: NetWare 6.5, buffer overflow of SSHD.NLM
September 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An authenticated attacker can generate a buffer overflow in the
SSHD service of Netware, in order to create a denial of service,
and possibly to execute code.
– Severity: 2/4
– Creation date: 01/09/2010
DESCRIPTION OF THE VULNERABILITY
The SSHD.NLM module implements the SSH service for Novell Netware.
The SCP and SFTP commands are used to transfer files via SSH.
However, SSHD.NLM does not check the size of the paths, which
creates a buffer overflow.
An authenticated attacker can therefore generate a buffer overflow
in the SSHD service of Netware, in order to create a denial of
service, and possibly to execute code.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/NetWare-6-5-buffer-overflow-of-SSHD-NLM-9892