Re: Novell Client login form enables reading and writing from and to the clipboard of the logged-in user

From: Roman Drahtmueller <draht@xxxxxxxxxx>
Date: Mon, 22 May 2006 19:43:40 +0200 (CEST)

Suggested Risk Level: Low.

Type of Risk: Information Leakage, Information Injection, Unauthorized
Access.

Affected Software: Novell Client for Windows, versions 4.9 and 4.8 (On
windows XP Pro and Windows 2000 Workstation).
This versions are the only one tested, thus other version may be vulnerable
as well.

Local / Remote activation: Local.

Summary:

1. Anyone with access to the computer's local operating system console, one
using the Novell client login screen (when the console is locked), can view
a textual content of the clipboard of the locally logged in user, by
performing a paste command into the "user name" field of the login form.

We thank Eitan Caspi for his precise analysis of the problem and for
thoroughly working with us on it. Specifically, we confirm the low
severity rating of this information leakage, which is why we allow
ourselves more time than usual to investigate an entirely satisfactory
solution to the problem. If there will be an update for this issue, our
customers and users will benefit from it through the regular channels.
The publication of Eitan's findings is the correct next step - again, we
thank him for his valuable work.

[...]

Eitan Caspi
Israel

Roman Drahtmüller,
Novell/SUSE Security.
--
- -
| Roman Drahtmüller <draht@xxxxxxxxxx> // "You don't need eyes to see, |
Security Architect Phone: // you need vision!"
| Novell - SUSE Linux +49-911-740530 // Maxi Jazz, Faithless |
- -

References:
- Novell Client login form enables reading and writing from and to the clipboard of the logged-in user
  - From: EitanCaspi@xxxxxxxxx

Prev by Date: [SECURITY] [DSA 1073-1] New MySQL 4.1 packages fix several vulnerabilities
Next by Date: ACROS Security: Buffer Overflow In EMC (previously Dantz) Retroclient Service
Previous by thread: Novell Client login form enables reading and writing from and to the clipboard of the logged-in user
Next by thread: Generic Browser Crash with Java 1.4.2_11, Java 1.5.0_06
Index(es):
- Date
- Thread

Relevant Pages

User Group Policy not applying after uninstall of Novell Client
... A Windows 2000 domain with several OU's. ... removing the Novell client to see what happens. ... the User settings of Group Policy do not apply. ... The Computer settings are applying just fine. ...
(microsoft.public.win2000.group_policy)
Re: Windows Login
... >do a right click over the Red "N" click on Novell Client ... Then click on the Location profiles tab ... >The next wilndow click the Windows NT/2000/XP tab. ... >>>User Name and Domain and click set password. ...
(microsoft.public.windowsxp.security_admin)
Netware 4.11 access from Windows AD domain
... Created a new Windows 2003 AD domain. ... currently use Novell client for Windows to authenticate to a Netware ... Company wants to no longer authenticate to Netware, ... the company does not want to upgrade the Netware server at all. ...
(microsoft.public.windows.server.migration)
Re: Upgrade NT 4 Doamin to 2000 EE
... Microsoft MVP - Directory Services ... > servers are either Windows 2000 AS or 2003 EE, ... > database servers, Groupwise on Novell, Client pc's have ... > Novell client and we have several sites across the state. ...
(microsoft.public.windows.server.active_directory)