Unrated severityNVD Advisory· Published Feb 13, 2008· Updated Apr 23, 2026

CVE-2008-0639

Description

Stack-based buffer overflow in the EnumPrinters function in the Spooler service (nwspool.dll) in Novell Client 4.91 SP2, SP3, and SP4 for Windows allows remote attackers to execute arbitrary code via a crafted RPC request, aka Novell bug 353138, a different vulnerability than CVE-2006-5854. NOTE: this issue exists because of an incomplete fix for CVE-2007-6701.

Affected products

Novell/Client3 versions
cpe:2.3:a:novell:client:4.91:sp2:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:novell:client:4.91:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:client:4.91:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:client:4.91:sp4:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

download.novell.com/DownloadnvdPatch
marc.infonvdPatch
secunia.com/advisories/28895nvdPatchVendor Advisory
www.securityfocus.com/bid/27741nvdPatch
www.zerodayinitiative.com/advisories/ZDI-08-005.htmlnvdPatch
support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5008300.htmlnvd
www.securityfocus.com/archive/1/487980/100/0/threadednvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2008/0496nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.036
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000