Computer Security
[EN] securityvulns.ru no-pyccku


Novell eDirectory iMonitor buffer overflow
Published:14.07.2009
Source:
SecurityVulns ID:10066
Type:remote
Threat Level:
5/10
Description:Off-by-one overflow on HTTP Accept-Language: header.
Affected:NOVELL : eDirectory 8.8
CVE:CVE-2009-0192 (Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote attackers to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a stack-based buffer overflow.)
Original documentdocumentSECUNIA, Secunia Research: Novell eDirectory iMonitor "Accept-Language" Buffer Overflow (14.07.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod