Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
edirectory vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2012-0429
dhost in NetIQ eDirectory 8.8.6.x prior to 8.8.6.7 and 8.8.7.x prior to 8.8.7.2 on Windows allows remote authenticated users to cause a denial of service (daemon crash) via crafted characters in an HTTP request.
Microfocus Edirectory 8.8.6.2
Microfocus Edirectory 8.8.6.1
Microfocus Edirectory 8.8.6.4
Microfocus Edirectory 8.8.6.3
Microfocus Edirectory 8.8.6.0
Microfocus Edirectory 8.8.6.6
Microfocus Edirectory 8.8.6.5
Microfocus Edirectory 8.8.7.0
Microfocus Edirectory 8.8.7.1
6.4
CVSSv2
CVE-2012-0430
Unspecified vulnerability in NetIQ eDirectory 8.8.6.x prior to 8.8.6.7 and 8.8.7.x prior to 8.8.7.2 on Windows allows remote malicious users to obtain an administrator cookie and bypass authorization checks via unknown vectors.
Microfocus Edirectory 8.8.6.0
Microfocus Edirectory 8.8.6.6
Microfocus Edirectory 8.8.6.5
Microfocus Edirectory 8.8.6.2
Microfocus Edirectory 8.8.6.1
Microfocus Edirectory 8.8.6.4
Microfocus Edirectory 8.8.6.3
Microfocus Edirectory 8.8.7.0
Microfocus Edirectory 8.8.7.1
10
CVSSv2
CVE-2009-0895
Integer overflow in Novell eDirectory 8.7.3.x prior to 8.7.3.10 ftf2 and 8.8.x prior to 8.8.5.2 allows remote malicious users to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
Novell Edirectory 8.7.3
Novell Edirectory 8.8
Novell Edirectory 8.7.3.10
Novell Edirectory 8.7.3.8
Novell Edirectory 8.8.5
Novell Edirectory 8.8.1
Novell Edirectory 8.8.2
Novell Edirectory 8.7.3.9
5
CVSSv2
CVE-2009-3862
The NDSD process in Novell eDirectory 8.7.3 prior to 8.7.3.10 ftf2 and eDirectory 8.8 prior to 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote malicious users to cause a denial of service (application hang) via a search request with a NULL Ba...
Novell Edirectory 8.7.3
Novell Edirectory 8.8
Novell Edirectory 8.8.1
Novell Edirectory 8.8.2
Novell Edirectory 8.7.3.8
Novell Edirectory 8.7.3.9
4.9
CVSSv2
CVE-2006-4185
Unspecified vulnerability in the NCPENGINE in Novell eDirectory 8.7.3.8 allows local users to cause a denial of service (CPU consumption) via unspecified vectors, as originally demonstrated using a Nessus scan.
Novell Edirectory 8.7
Novell Edirectory 8.7.1
Novell Edirectory 8.7.3
Novell Edirectory 8.7.3.8
4.3
CVSSv2
CVE-2008-0925
Cross-site scripting (XSS) vulnerability in the iMonitor interface in Novell eDirectory 8.7.3.x prior to 8.7.3 sp10, and 8.8.x prior to 8.8.2 ftf2, allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters that are used within "error mes...
Novell Edirectory 8.8.1
Novell Edirectory 8.8
Novell Edirectory 8.7.3.9
Novell Edirectory 8.8.2
7.5
CVSSv2
CVE-2002-1552
Novell eDirectory (eDir) 8.6.2 and Netware 5.1 eDir 85.x allows users with expired passwords to gain inappropriate permissions when logging in from Remote Manager.
Novell Edirectory 85.24
Novell Edirectory 85.30
Novell Edirectory 8.6.2
Novell Edirectory 85.20
7.8
CVSSv2
CVE-2006-4520
ncp in Novell eDirectory prior to 8.7.3 SP9, and 8.8.x prior to 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote malicious users to cause a denial of service (daemon crash) when the heap is written to a log file.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
Novell Edirectory
10
CVSSv2
CVE-2008-5038
Use-after-free vulnerability in the NetWare Core Protocol (NCP) feature in Novell eDirectory 8.7.3 SP10 prior to 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP ...
Novell Edirectory 8.7.3
Novell Edirectory
Novell Edirectory 8.8
7.5
CVSSv2
CVE-2017-9285
NetIQ eDirectory prior to 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
Netiq Edirectory 9.0
Microfocus Edirectory
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »