VULHUB ™

Novell Client是允许NetWare连接到Windows的工作站软件。 Novell Client在处理畸形请求报文时存在漏洞，远程攻击者可能利用此漏洞导致服务器拒绝服务。 如果向Novell Client的427端口发送了特制报文的话，就会导致srvloc.sys中出现以下拒绝服务情况： IRQL_NOT_LESS_OR_EQUAL (a) An attempt was made to access a pageable (or completely invalid) address at an interrupt request level (IRQL) that is too high. This is usually caused by drivers using improper addresses. If a kernel debugger is available get the stack backtrace. Arguments: Arg1: 00000006, memory referenced Arg2: 00000002, IRQL Arg3: 00000000, value 0 = read operation, 1 = write operation Arg4: 804204bd, address which referenced memory Novell Client 4.91 SP2 Novell Client 4.91 SP1 Novell Client 4.91 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： <a href="http://support.novell.com/security-alerts" target="_blank">http://support.novell.com/security-alerts</a>

Novell Client是允许NetWare连接到Windows的工作站软件。 Novell Client在处理畸形请求报文时存在漏洞，远程攻击者可能利用此漏洞导致服务器拒绝服务。 如果向Novell Client的427端口发送了特制报文的话，就会导致srvloc.sys中出现以下拒绝服务情况： IRQL_NOT_LESS_OR_EQUAL (a) An attempt was made to access a pageable (or completely invalid) address at an interrupt request level (IRQL) that is too high. This is usually caused by drivers using improper addresses. If a kernel debugger is available get the stack backtrace. Arguments: Arg1: 00000006, memory referenced Arg2: 00000002, IRQL Arg3: 00000000, value 0 = read operation, 1 = write operation Arg4: 804204bd, address which referenced memory Novell Client 4.91 SP2 Novell Client 4.91 SP1 Novell Client 4.91 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： <a href="http://support.novell.com/security-alerts" target="_blank">http://support.novell.com/security-alerts</a>