Novell NetWare Client Print Provider (nwspool.dll) Multiple Function Overflow

High Nessus Plugin ID 23699


The remote Windows host contains a DLL that suffers from a buffer overflow flaw.


The file 'nwspool.dll' included with the Novell Client software reportedly contains a buffer overflow that can be triggered by long arguments to the Win32 'EnumPrinters()' and 'OpenPrinter()' functions.
An anonymous remote attacker may be able to leverage this issue via RPC requests to the Spooler service to execute arbitrary code remotely on the affected host.


Install the 491psp3_nwspool.exe patch file referenced in the vendor advisory above.

See Also

Plugin Details

Severity: High

ID: 23699

File Name: novell_tid2974765.nasl

Version: $Revision: 1.17 $

Type: local

Agent: windows

Family: Windows

Published: 2006/11/21

Modified: 2015/01/12

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2006/11/13

Vulnerability Publication Date: 2006/11/20

Exploitable With


Reference Information

CVE: CVE-2006-5854

BID: 21220

OSVDB: 30547