PT-2011-1501 · Novell · Novell Edirectory

1C239C43F521145Fa8385D64A9C32243

Published

2011-02-07

Updated

2018-10-10

CVE-2010-4327

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Novell eDirectory versions 8.8.5 through 8.8.5.5 Novell eDirectory versions 8.8.6 through 8.8.6.1

Description The issue allows remote attackers to cause a denial of service, resulting in the system hanging, by sending a malformed request to the NCP service. This can be achieved by sending a malformed FileSetLock request to port 524.

Recommendations For Novell eDirectory versions 8.8.5 through 8.8.5.5, update to version 8.8.5.6 or later. For Novell eDirectory versions 8.8.6 through 8.8.6.1, update to version 8.8.6.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2010-4327

ZDI-11-060

Affected Products

Novell Edirectory

PT-2011-1501 · Novell · Novell Edirectory

CVE-2010-4327

Related Identifiers

Affected Products

References · 10