Novell is now a part of Micro Focus

My Favorites

Close

Please to see your favorites.

ZENworks Remote Management fails to properly validate authentication.

(Last modified: 26May2006)

This document (10097644) is provided subject to the disclaimer at the end of this document.

fact

Novell ZENworks 6.5 Desktop Management - ZfD6.5

Novell ZENworks 6.5 Server Management - ZfS6.5

Novell ZENworks for Desktops 4.x

Novell ZENworks for Servers 3.x

Novell ZENworks Remote Management

symptom

ZENworks Remote Management fails to properly validate authentication.

ZEN Remote Management authentication protocol is vulnerable to an unauthenticated remote attacker.

ZEN Remote Management authentication protocol is vulnerable via the UDP protocol.

cause

Multiple Remote Stack & Heap Overflows in zenrem32.exe

fix

Fix for ZENworks 6.5 Desktop Management SP1 (or newer) is in the ZENworks Desktop Management Agent MSI version 6.5.92.50525 (zfdagent.msi dated 25 May 2005) or newer found at https://support.novell.com/filefinder/
Note: zen65sp2.exe (or newer) contains the zfdagent.msi dated 25 May 2005 or newer.  Search for "zen65sp2.exe" at https://support.novell.com/filefinder/

Fix for ZENworks for Desktops 4.0.1 IR6 (or newer) is in the ZENworks Desktop Management Agent MSI version 4.00.1135.50525 (zfdagent.msi dated 25 May 2005) or newer found at https://support.novell.com/filefinder/.

Fix for ZENworks 6.5 Server Management SP1 (or newer) is in rcagent.dll and rcconsole.exe dated 23 May 2005 or newer and zenrem32.exe dated 24 May 2005 or newer found at https://support.novell.com/filefinder/.

Fix for ZENworks for Servers 3.0.2 IR3 (or newer) is in zenrem32.exe, rcagent.dll and rcconsole.exe dated 24 May 2005 or newer found at https://support.novell.com/filefinder/.

note

Vulnerability discovered by Alex Wheeler

The versions of Novell ZENworks Remote Management that are vulnerable to this type of unauthenticated remote attack are limited to the products listed above.

This vulnerability has been assigned the identifier CAN-2005-1543 by the CVE database.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

  • Document ID:
  • 10097644
  • Solution ID: NOVL102054
  • Creation Date: 09May2005
  • Modified Date: 26May2006
    • NovellManagement Products

Did this document solve your problem? Provide Feedback