Novell NetIdentity Agent Pointer Dereference Remote Code Execution Vulnerability Network Vulnerability

Summary

The host is installed with Novell NetIdentity Agent and is prone to remote code execution vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary code in the context of the affected application with system privileges through a valid IPC$ connection. Impact Level: System

Solution

Upgrade to NetIdentity Client version 1.2.4 http://download.novell.com/Download?buildid=6ERQGPjRZ8o~

Insight

Handling of RPC messages over the XTIERRPCPIPE named pipe in 'xtagent.exe', and sending RPC messages that triggers the dereference of an arbitrary pointer which can cause remote code execution.

Affected

Novell NetIdentity Agent version prior to 1.2.4 on Windows.

References

http://securitytracker.com/alerts/2009/Apr/1021990.html
http://www.securityfocus.com/archive/1/archive/1/502514/100/0/threaded
http://www.vupen.com/english/advisories/2009/0954
http://www.zerodayinitiative.com/advisories/ZDI-09-016

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-1350

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Code Execution and DoS Vulnerabilities (Windows)
Adobe Air Multiple Vulnerabilities -01 August 12 (Mac OS X)
Adobe Air Multiple Vulnerabilities June-2012 (Mac OS X)
Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)
Adobe Air Multiple Vulnerabilities - October 12 (Windows)

Take action and discover your vulnerabilities