NASLDB: Novell Client nwfs.sys Local Privilege Escalation
General
ID: 33481
Name: Novell Client nwfs.sys Local Privilege Escalation
Summary: Checks file version of nwfs.sys
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:F/RL:OF/RC:C
Port: 139
Family: Windows
Type: Local
Description
The file ‘NWFS.SYS’ included with the Novell Client software and
installed on the remote host is reportedly affected by a local
privilege escalation vulnerability that allows a client to send a
request to the kernel driver using crafted pointer and then execute
code with kernel privileges.
Exploiting
Exploit Available: True
Exploitability Ease: Exploits are available
Sources
CVE: CVE-2008-3158
OSVDB: 46578
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: –
Plugin Release: 2008/07/11
Plugin
Version: 1.9
Filename: novell_nwfs_4_91_4_12.nasl
Filesize: 4336 bytes
MD5 Hash: 0f155db8c8477aa97ff49ad986165541
Identification: SMB/Registry/Enumerated
Require Keys: SMB/Registry/Enumerated
Dependencies: "smb_hotfixes.nasl"
Copyright: This script is Copyright© 2008-2011 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack