CVE-2009-5153
CRITICALNovell NetWare < 6.5 SP8 - Unauthenticated Remote Code Execution via CALLIT RPC Length Field
Title source: llmDescription
In Novell NetWare before 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated attackers to execute code, because a length field was incorrectly trusted.
References (3)
Core 3
Core References
Permissions Required, Third Party Advisory x_refsource_misc
https://bugzilla.suse.com/show_bug.cgi?id=515804
Third Party Advisory, VDB Entry x_refsource_misc
https://www.zerodayinitiative.com/advisories/ZDI-09-067/
Vendor Advisory x_refsource_misc
https://download.novell.com/Download?buildid=1z3z-OsVCiE~
Scores
CVSS v3
9.8
EPSS
0.0887
EPSS Percentile
92.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (2)
microfocus/netware
6.5 sp1 (7 CPE variants)
microfocus/netware
< 6.5
Published
Nov 21, 2018
Tracked Since
Feb 18, 2026