Computer Security
[EN] securityvulns.ru no-pyccku


Novell eDirectory NCP over IP DoS
Published:27.04.2007
Source:
SecurityVulns ID:7641
Type:remote
Threat Level:
5/10
Description:Malformed fragmented request causes service to crash.
Affected:NOVELL : eDirectory 8.8
CVE:CVE-2006-4520 (ncp in Novell eDirectory before 8.7.3 SP9, and 8.8.x before 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote attackers to cause a denial of service (daemon crash) when the heap is written to a log file.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 04.26.07: Novell eDirectory NCP Fragment Denial of Service Vulnerability (27.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod