Computer Security
[EN] securityvulns.ru no-pyccku


Novell eDirectory buffer overflow
updated since 26.03.2008
Published:28.03.2008
Source:
SecurityVulns ID:8839
Type:remote
Threat Level:
6/10
Description:Buffer overflow on oversized LDAP delRequest.
CVE:CVE-2008-0924 (Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and earlier, and 8.8.1 and earlier in the 8.8.x series, allows remote attackers to cause a denial of service (daemon crash or CPU consumption) or execute arbitrary code via a long delRequest LDAP Extended Request message, probably involving a long Distinguished Name (DN) field.)
Original documentdocumentZDI, ZDI-08-013: Novell eDirectory for Linux Stack Overflow (26.03.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod