PT-2017-9982 · Novell · Edirectory

Published

2017-03-23

·

Updated

2017-04-05

·

CVE-2016-9168

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions Novell eDirectory versions prior to 9.0.2
Description A missing X-Frame-Options header in the NDS Utility Monitor in NDSD could be used by remote attackers for clickjacking.
Recommendations For versions prior to 9.0.2, update to version 9.0.2 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-9168

Affected Products

Edirectory