CVE-2005-1543

Novell ZENworks <6.5 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-1543. PoCs published by Metasploit, Unknown, including Metasploit module exploits/windows/novell/zenworks_desktop_agent.

AI-analyzed exploit summary This exploit targets a heap overflow vulnerability in Novell ZENworks 6.5 Desktop/Server Management agent. It sends a crafted payload to trigger the overflow and achieve remote code execution on vulnerable systems.

Description

Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16815

This exploit targets a heap overflow vulnerability in Novell ZENworks 6.5 Desktop/Server Management agent. It sends a crafted payload to trigger the overflow and achieve remote code execution on vulnerable systems.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell ZENworks 6.5 Desktop/Server Management Agent
No auth needed
Prerequisites: Network access to the target system · Vulnerable version of Novell ZENworks agent running
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Metasploit · remotewindows
https://www.exploit-db.com/exploits/1150

This exploit targets a heap overflow vulnerability in Novell ZENworks 6.5 Desktop/Server Management agent. It sends a crafted packet to trigger the overflow and execute shellcode for remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell ZENworks 6.5 Desktop/Server Management Agent
No auth needed
Prerequisites: Network access to the target system · ZENworks agent running on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GOOD
by Unknown · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/novell/zenworks_desktop_agent.rb

This Metasploit module exploits a heap overflow in Novell ZENworks 6.5 Desktop/Server Management agent (CVE-2005-1543) by sending maliciously crafted packets to trigger a buffer overflow and execute arbitrary payloads. The exploit targets Windows systems and leverages a known return address for reliable exploitation.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Novell ZENworks 6.5 Desktop/Server Management Agent
No auth needed
Prerequisites: Network access to the target system · ZENworks agent listening on the target port
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Vendor Advisory x_refsource_misc
http://www.rem0te.com/public/images/zen.pdf
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13678
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20639
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014005
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/0571
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111645317713662&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20645
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15433
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20644

Scores

EPSS 0.6688
EPSS Percentile 99.2%

Details

Status published
Products (7)
novell/zenworks 6.5
novell/zenworks_desktops 3.2 sp2
novell/zenworks_desktops 4.0
novell/zenworks_desktops 4.0.1
novell/zenworks_remote_management
novell/zenworks_server_management 6.5
novell/zenworks_servers 3.2
Published May 25, 2005
Tracked Since Feb 18, 2026