{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Novell ZENworks Asset Management 7.","product":{"name":"N/A","vendor":{"name":"Novell","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 de type d\u00e9passement de capacit\u00e9 (integer overflow)\ndans la biblioth\u00e8que msg.dll pr\u00e9sente dans les services Task Server,\nCollection Server et Collection Client permet \u00e0 utilisateur distant\nmalintentionn\u00e9 d'ex\u00e9cuter du code arbitraire par le biais de paquets\nsp\u00e9cialement con\u00e7us.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Novell 3623505 du 01 d\u00e9cembre 2006 :","url":"http://secure-support.novell.com/KanisaPlatform/Publishing/506/3623505_f.SAL_Public.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Novell 3578235 du 01 d\u00e9cembre 2006 :","url":"http://secure-support.novell.com/KanisaPlatform/Publishing/887/3578235_f.SAL_Public.html"}],"reference":"CERTA-2006-AVI-525","revisions":[{"description":"version initiale.","revision_date":"2006-12-04T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 de type d\u00e9bordement de m\u00e9moire permet \u00e0 un utilisateur\ndistant malintentionn\u00e9 d'ex\u00e9cuter du code arbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9 dans Novell ZENworks Asset Management","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 de Novell","url":null}]}