Computer Security

Novell eDirectory buffer overflow
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Novell eDirectory buffer overflow
updated since 26.03.2008
Published:28.03.2008
Source:BUGTRAQ
SecurityVulns ID:8839
Type:remote
Level:6/10
Description:Buffer overflow on oversized LDAP delRequest.
CVE:CVE-2008-0924 (Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and earlier, and 8.8.1 and earlier in the 8.8.x series, allows remote attackers to cause a denial of service (daemon crash or CPU consumption) or execute arbitrary code via a long delRequest LDAP Extended Request message, probably involving a long Distinguished Name (DN) field.)
Original documentdocumentZDI, ZDI-08-013: Novell eDirectory for Linux Stack Overflow (26.03.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru