As of 20-October-2006, Ryan Smith from Hustle Labs
(http://www.hustlelabs.com) and Michael Ligh from MNIN
(http://www.mnin.org) have released an advisory
detailing a vulnerability in Novell eDirectory HTTPStk. This
vulnerability occurs when processing HTTP Request headers and can be
triggered
As of 24.7.2006, a new advisory detailing a buffer overflow in
Tumbleweed EMF's LHA archive processing has been made public on the
Hustle Labs website. Please visit
http://www.hustlelabs.com/advisories.html for more information.
-Ryan Smith
versions)
Novell Netware Client for Windows (All versions)
Credit:
Ryan Smith Alex Wheeler
Details Patch information:
http://www.hustlelabs.com/novell_ndps_advisory.pdf
Vendor links:
http://www.novell.com/support/search.do?cmd=displayKCdocType=kcexternalId=9145sliceId=SAL_PublicdialogID
:
Remote Code Execution
Credit:
Ryan Smith ([EMAIL PROTECTED])
Advisory:
http://www.hustlelabs.com/shareaza_advisory.pdf