SecurityReason.com - Our Reason is

Security

Register | Forget Password | Login
SecurityReason
IT News
Search
SecurityAlert Database
About SecurityAlert
ExploitAlert Database
SecurityReason Research
WLB
WLB Database
Send to WLB
About WLB
Services
Security Audit
Schedule
Prices of services
Contact
RSS
SecurityReason IT News
SecurityAlert
World Laboratory of Bugtraq
ExploitAlert
Apache
PHP
Corporate
Contact
About SecurityReason
Note

If you have found a vulnerability, please send to our SecurityAlert Database :
secalert()securityreason()com

Also if you have new ( 0-day ) exploit, please send to our ExploitAlert Archive :
exploit()securityreason()com
Home arrow SecurityAlert Database

Arrow  Topic :

Novell Client login form enables reading and writing from and to the clipboard of the logged-in user


Arrow  SecurityAlert : 961
Arrow  CVE : CVE-2006-2612
Arrow  SecurityRisk : Low  Security Risk Low  (About)
Arrow  Remote Exploit : No
Arrow  Local Exploit : Yes
Arrow  Exploit Available : No
Arrow  Credit : EitanCaspi@yahoo.com (eitancaspi yahoo com)</span> (1 replies)<
Arrow  Published : 27.05.2006

Arrow  Affected Software : Novell Client



Arrow  Advisory Content :  

> Suggested Risk Level: Low.
>
> Type of Risk: Information Leakage, Information Injection, Unauthorized
> Access.
>
> Affected Software: Novell Client for Windows, versions 4.9 and 4.8 (On
> windows XP Pro and Windows 2000 Workstation).
> This versions are the only one tested, thus other version may be
vulnerable
> as well.
>
> Local / Remote activation: Local.
>
> Summary:
>
> 1. Anyone with access to the computer's local operating system console,
one
> using the Novell client login screen (when the console is locked), can
view
> a textual content of the clipboard of the locally logged in user, by
> performing a paste command into the "user name" field of the login form.

We thank Eitan Caspi for his precise analysis of the problem and for
thoroughly working with us on it. Specifically, we confirm the low
severity rating of this information leakage, which is why we allow
ourselves more time than usual to investigate an entirely satisfactory
solution to the problem. If there will be an update for this issue, our
customers and users will benefit from it through the regular channels.
The publication of Eitan's findings is the correct next step - again, we
thank him for his valuable work.

[...]

> Eitan Caspi
> Israel

Roman Drahtmüller,
Novell/SUSE Security.
--
- -
| Roman Drahtmüller <draht (at) novell (dot) com [email concealed]> //
"You don't need eyes to see, |
Security Architect Phone: // you need vision!"
| Novell - SUSE Linux +49-911-740530 // Maxi Jazz, Faithless |
- -




Arrow  Feedback :

If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com.
Alert

libopie __readrec() off-by-one

Security Risk Medium- 2010-04-23

This advisory is related to new FreeBSD advisory FreeBSD-SA-10:05.opie.
Apache RSS Apache Alert

» Apache ActiveMQ 5.4.0
   source code disclosure
   vulnerability

» Apache ActiveMQ 5.3.0
   Persistent Cross-Site
   Scripting

» Apache CouchDB 0.10.1
   Timing Attack
   Vulnerability

» Apache 1.3.41 mod_proxy
   Integer overflow (code
   execution)
PHP RSS PHP Alert

» PHP 5.2.12/5.3.1
   session.save_path
   safe_mode and
   open_basedir bypass

» PHP 5.2.12/5.3.1 Multiple
   Vulnerabilities

» PHP 5.2.11 libgd multiple
   vulnerabilities

» PHP 5.2.11 tempnam()
   safe_mode bypass
Copyright © SecurityReason.com. All Rights Reserved.