CVE-2009-3862

Name of the Vulnerable Software and Affected Versions Novell eDirectory versions 8.7.3 through 8.7.3.10 ftf2 Novell eDirectory versions 8.8 through 8.8.5 ftf1

Description The issue arises from the NDSD process in Novell eDirectory not properly handling certain LDAP search requests. This can be exploited by remote attackers to cause a denial of service, resulting in an application hang. The exploitation is possible via a search request with a NULL BaseDN value.

Recommendations For Novell eDirectory versions 8.7.3 through 8.7.3.10 ftf2, update to version 8.7.3.10 ftf2 or later. For Novell eDirectory versions 8.8 through 8.8.5 ftf1, update to version 8.8.5 ftf1 or later.