Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Novell eDirectory Multiple Vulnerabilities Nov08 - (Linux)
Information
Severity
Severity
Critical
Family
Family
Buffer overflow
CVSSv2 Base
CVSSv2 Base
10.0
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Solution Type
Solution Type
Vendor Patch
Created
Created
15 years ago
Modified
Modified
5 years ago
Summary
This host is running Novell eDirectory and is prone to Multiple Vulnerabilities.
Insight
Insight
The flaws are due to - boundary error in LDAP and NDS services. - boundary error in HTTP language header and HTTP content-length header. - HTTP protocol stack(HTTPSTK) that does not properly filter HTML code from user-supplied input.
Affected Software
Affected Software
Novell eDirectory 8.8 SP2 and prior on Linux.
Solution
Solution
Update to 8.8 Service Pack 3.
Common Vulnerabilities and Exposures (CVE)
References
- http://securitytracker.com/alerts/2008/Aug/1020785.html
- http://securitytracker.com/alerts/2008/Aug/1020786.html
- http://securitytracker.com/alerts/2008/Aug/1020787.html
- http://securitytracker.com/alerts/2008/Aug/1020788.html
- http://www.novell.com/support/viewContent.do?externalId=3426981
- http://www.novell.com/documentation/edir873/sp10_readme/netware/readme
- http://support.novell.com/patches.html