iDefense Security Advisory 01.09.08 – Local exploitation of an input validation error vulnerability within Novell Inc.’s NetWare Client allows attackers to execute arbitrary code within the kernel. iDefense has confirmed the existence of this vulnerability in nicm.sys, file version 3.0.0.4, as included with Novell’s NetWare Client 4.91 SP4. Other versions may also be vulnerable.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/62471/01.09.08-1.txt
Source: https://packetstormsecurity.com/files/62471/iDEFENSE-Security-Advisory-2008-01-09.1.html