PT-2006-5000 · Novell · Novell Edirectory

Published

2006-10-24

Updated

2017-07-20

CVE-2006-4177

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Novell eDirectory versions prior to 8.8.1 FTF1

Description A heap-based buffer overflow issue exists in the NCP engine, allowing remote attackers to execute arbitrary code by sending a crafted NCP over IP packet that causes the NCP engine to read more data than intended.

Recommendations For versions prior to 8.8.1 FTF1, update to version 8.8.1 FTF1 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-4177

Affected Products

Novell Edirectory

PT-2006-5000 · Novell · Novell Edirectory

CVE-2006-4177

Related Identifiers

Affected Products

References · 8