NVD

Id
61006  
Name
CVE-2006-2304  
Description
Multiple integer overflows in the DPRPC library (DPRPCW32.DLL) in Novell Client 4.83 SP3, 4.90 SP2 and 4.91 SP2 allow remote attackers to execute arbitrary code via an XDR encoded array with a field that specifies a large number of elements, which triggers the overflows in the ndps_xdr_array function. NOTE: this was originally reported to be a buffer overflow by Novell, but the original cause is an integer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2016-12-20  
Published
2006-05-11  
Modified Date
2011-03-07  
Seq
2006-2304  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
315059 61006 CVE-2006-2304 20060515 Novell NDPS Remote Vulnerability (Server & Client)  View
315060 61006 CVE-2006-2304 1016052  View
315061 61006 CVE-2006-2304 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973719.htm  View
315062 61006 CVE-2006-2304 http://www.hustlelabs.com/novell_ndps_advisory.pdf  View
315063 61006 CVE-2006-2304 20060515 Novell NDPS Remote Vulnerability (Server & Client)  View
315064 61006 CVE-2006-2304 17931  View
315065 61006 CVE-2006-2304 ADV-2006-1759  View
315066 61006 CVE-2006-2304 novell-ndps-overflow(26314)  View

Related JVN