Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Novell eDirectory Multiple Vulnerabilities Nov08 - (Linux)

Information

Severity

Severity

Critical

Family

Family

Buffer overflow

CVSSv2 Base

CVSSv2 Base

10.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

14 years ago

Modified

Modified

3 years ago

Summary

This host is running Novell eDirectory and is prone to Multiple Vulnerabilities.

Insight

Insight

The flaws are due to - boundary error in LDAP and NDS services. - boundary error in HTTP language header and HTTP content-length header. - HTTP protocol stack(HTTPSTK) that does not properly filter HTML code from user-supplied input.

Affected Software

Affected Software

Novell eDirectory 8.8 SP2 and prior on Linux.

Solution

Solution

Update to 8.8 Service Pack 3.

Common Vulnerabilities and Exposures (CVE)