CVE-2008-3159

Name of the Vulnerable Software and Affected Versions: Novell eDirectory versions 8.7.3.10 through 8.7.3 SP10b Novell eDirectory versions 8.8 through 8.8.2 ftf2

Description: The issue is related to an integer overflow in ds.dlm, used by dhost.exe, which can lead to a stack-based buffer overflow. This is due to flawed arithmetic, allowing remote attackers to execute arbitrary code via unspecified vectors.

Recommendations: For Novell eDirectory versions 8.7.3.10 through 8.7.3 SP10b, update to version 8.7.3 SP10b or later. For Novell eDirectory versions 8.8 through 8.8.2 ftf2, update to version 8.8.2 ftf2 or later.