APP: Novell Netware Network Lock Manager Remote Code Execution

This signature detects attempts to exploit a known vulnerability in the Novell Netware Network Lock Manager. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.

Extended Description

Novell Netware is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the system. Successful attacks will completely compromise the affected computer.

Affected Products

Novell netware

References

BugTraq: 50804 51352

CVE: CVE-2011-4191

URL: http://www.novell.com/

Short Name
APP:NOVELL:XNFS-NLM
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2011-4191 Code Execution Lock Manager Netware Network Novell Remote bid:50804 bid:51352
Release Date
02/13/2012
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
Port
udp/32778,32779,2049,1234
False Positive
Unknown
Vendors

Novell

CVSS Score

7.5

Found a potential security threat?