Unrated severityNVD Advisory· Published Dec 10, 2007· Updated Apr 23, 2026

CVE-2007-6302

Description

Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162."

Affected products

Novell/Netmail6 versions
cpe:2.3:a:novell:netmail:3.5.2:a:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:novell:netmail:3.5.2:a:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5.2:b:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5.2:c:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5.2:c1:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5.2:d:*:*:*:*:*:*
- cpe:2.3:a:novell:netmail:3.5.2:e-ftfl:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/27974nvdPatchVendor Advisory
www.vupen.com/english/advisories/2007/4112nvdVendor Advisory
www.messagingarchitects.com/en/support/mplusnetmail/docs/readme.pdfnvd
www.securityfocus.com/archive/1/484843/100/0/threadednvd
www.securityfocus.com/bid/26753nvd
www.securitytracker.com/idnvd
www.zerodayinitiative.com/advisories/ZDI-07-072.htmlnvd
exchange.xforce.ibmcloud.com/vulnerabilities/38909nvd
secure-support.novell.com/KanisaPlatform/Publishing/990/3639135_f.SAL_Public.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000