PT-2008-3341 · Novell · Novell Edirectory

Published

2008-07-14

Updated

2017-08-08

CVE-2008-1809

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Novell eDirectory versions 8.7.3 through 8.7.3.10b Novell eDirectory versions 8.8 through 8.8.2 FTF2

Description A heap-based buffer overflow issue allows remote attackers to execute arbitrary code via an LDAP search request containing "NULL search parameters."

Recommendations For Novell eDirectory versions 8.7.3 through 8.7.3.10b, update to version 8.7.3.10b or later. For Novell eDirectory versions 8.8 through 8.8.2 FTF2, update to version 8.8.2 FTF2 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2008-1809

Affected Products

Novell Edirectory

PT-2008-3341 · Novell · Novell Edirectory

CVE-2008-1809

Weakness Enumeration

Related Identifiers

Affected Products

References · 8