virus logo Intrusion Prevention

Novell.eDirectory.LDAP.Extended.Request.Buffer.Overflow

description-logoDescription

This indicates a buffer overflow vulnerability in Novell eDirectory.
This vulnerability is caused by a buffer error when processing overly large LDAP Extended Request messages, which could be exploited by remote attackers to crash an affected application or execute arbitrary code.

affected-products-logoAffected Products

Novell eDirectory 8.8.1
Novell eDirectory 8.7.3 9
Novell eDirectory 8.7.3 .8 pre-SP9
Novell eDirectory 8.7.3 .8
Novell eDirectory 8.7.3
Novell eDirectory 8.7.1 SU1
Novell eDirectory 8.7.1
Novell eDirectory 8.7
Novell eDirectory 8.6.2
Novell eDirectory 8.5.27
Novell eDirectory 8.5.12 a
Novell eDirectory 8.5
Novell eDirectory 8.0
Novell eDirectory 8.8

Impact logoImpact

System Compromise
Denial of Service

recomended-action-logoRecommended Actions

Novell has issued an update to correct this vulnerability: http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=3382120&sliceId=SAL_Public&dialogID=59352034&stateId=0%200%2059350122

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-01-11 16.995

References

http://www.zerodayinitiative.com/advisories/ZDI-08-013 http://secunia.com/advisories/29476/
ID 15504
Created Mar 27, 2008
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2008-0924
Exploit Prediction Score 7.61%
Default Action pass
Active
Affected OS Windows, Linux, Solaris, Other
Affected App Novell