Novell eDirectory HTTP Request Remote Buffer Overflow Vulnerability
Last Update Date:
28 Jan 2011
Release Date:
28 Oct 2009
5387
Views
RISK: Medium Risk
A vulnerability has been identified in Novell eDirectory, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. This issue is caused by a buffer overflow error in the "dhost" service when processing overly long HTTP requests, which could be exploited by remote attackers to crash a vulnerable server or execute arbitrary code via a specially crafted request.
Impact
- Denial of Service
- Remote Code Execution
System / Technologies affected
- Novell eDirectory version 8.8 SP5 and prior
Solutions
It is not aware of any vendor-supplied patch.
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Share with