Novell SUSE Linux Enterprise Server Remote Manager Heap Overflow

I can’t get the current iDefence vulnerabilities page - I suspect it is because there are far too many people trying to get that page served to them (to do my part I’ve stopped trying to get it…) This info is from the e-mail that was sent to the mailing list. Sorry about the missing links - I can’t get to those pages either…

Remote exploitation of a heap overflow vulnerability in Novell Inc.’s Open Enterprise Server Remote Manager allows attackers to execute arbitrary code.

III. ANALYSIS

The vulnerability specifically exists due to improper handling of a an HTTP POST request with a negative Content-Length paramater. When such a request is received, controllable heap corruption occurs which can lead to the execution of arbitrary code using traditional Linux heap overflow methods….

Novell SUSE Linux Enterprise Server components are included in Novell Open Enterprise Server; as such, Open Enterprise Server is also vulnerable.

Novell has released the following advisories to address this issue.

Advisory One

Advisory Two

SUSE has released this advisory to address this issue…

[Continue reading Novell SUSE Linux Enterprise Server Remote Manager Heap Overflow]

[tags]novell,linux,code,vulnerability,remote,arbitrary,exploit,server,heap,overflow,suse,enterprise,remote manager[/tags]