Computer Security
[EN] no-pyccku

Novell eDirectory buffer overflow
updated since 26.03.2008
SecurityVulns ID:8839
Threat Level:
Description:Buffer overflow on oversized LDAP delRequest.
CVE:CVE-2008-0924 (Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory and earlier, and 8.8.1 and earlier in the 8.8.x series, allows remote attackers to cause a denial of service (daemon crash or CPU consumption) or execute arbitrary code via a long delRequest LDAP Extended Request message, probably involving a long Distinguished Name (DN) field.)
Original documentdocumentZDI, ZDI-08-013: Novell eDirectory for Linux Stack Overflow (26.03.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod