ISS X-Force Database: novell-netware-tcpipnlm-dos(20024): Novell NetWare TCPIP.NLM denial of service

Novell NetWare TCPIP.NLM denial of service

novell-netware-tcpipnlm-dos (20024)

Low Risk

Description:

Novell NetWare Server is vulnerable to denial of service attack, caused by an unspecified NULL pointer dereference error in the TCPIP.NLM module when trying to process a TCP packet that has been received. By sending a modified TCP packet, a remote attacker could cause a denial of service.

Platforms Affected:

Novell, NetWare 6.0
Novell, NetWare 6.5

Remedy:

For Novell NetWare 6 with SP1 or later:
Apply the patch for this vulnerability, as listed in Novell Technical Information Document TID2970467. See References.

For Novell NetWare 6.5:
Apply the patch for this vulnerability, as listed in Novell Technical Information Document TID2970468. See References.

Consequences:

Denial of Service

References:

Novell Technical Information Document TID2970467, TCP update for NetWare 6 - TID2970467 (last modified 07APR2005) at http://support.novell.com/cgi-bin/search/searchtid.cgi?/2970467.htm.
NOVELL Web site, Novell Netware products at http://www.novell.com/products/netware/.
TCP Technical Information Document TID2970468, TCP update for NetWare 6.5 - TID2970468 (last modified 07APR2005) at http://support.novell.com/cgi-bin/search/searchtid.cgi?/2970468.htm.
BID-13067: Novell NetWare TCP Stack Remote Denial Of Service Vulnerability
CVE-2005-1060: Unknown vulnerability in the TCP/IP functionality (TCPIP.NLM) in Novell Netware 6.x allows remote attackers to cause a denial of service (ABEND by Page Fault Processor Exception) via certain packets.
SA14874: Novell NetWare Unspecified TCP Packet Handling Denial of Service

Reported:

Apr 08, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page