Skip to main content

Novell eDirectory HTTP Request Remote Buffer Overflow Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 28 Oct 2009 5387 Views

RISK: Medium Risk

A vulnerability has been identified in Novell eDirectory, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. This issue is caused by a buffer overflow error in the "dhost" service when processing overly long HTTP requests, which could be exploited by remote attackers to crash a vulnerable server or execute arbitrary code via a specially crafted request.


Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • Novell eDirectory version 8.8 SP5 and prior

Solutions

It is not aware of any vendor-supplied patch.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link