In Novell NetWare before 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated attackers to execute code, because a length field was incorrectly trusted.

Published : 2018-11-21 15:29 Updated : 2018-12-20 01:05

CVSS Score More info
Score 7.5 / 10
Vendor Product Version URI
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp1
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp2
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp3
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp4
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp5
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp6
Microfocus Netware 6.5 cpe:/a:microfocus:netware:6.5:sp7
  1. Microfocus (1) Search CVE
    1. Netware (1) Search CVE
      1. 6.5


ID Name Description Links
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. CVE

History of changes

Date Event
2018-12-20 01:05
2018-11-21 15:29