Novell File Reporter Engine RECORD Element Tag Parsing Overflow (uncredentialed check)
High Nessus Plugin ID 55544
SynopsisThe remote host is running a service that is susceptible to a remote buffer overflow attack.
DescriptionThe version of Novell File Reporter (NFR) Engine running on the remote host is vulnerable to a remote buffer overflow attack. Specifically, the application fails to check the size of user-supplied strings before using them in a call to memcpy when parsing tags inside the '<RECORD>' element.
An unauthenticated, remote attacker, accessing the service, could leverage this vulnerability to corrupt the process thread's stack, possibly resulting in arbitrary code execution under the context of a privileged account.
SolutionApply the security patch referenced in Novell's advisory.