Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-1809
Heap-based buffer overflow in Novell eDirectory 8.7.3 prior to 8.7.3.10b, and 8.8 prior to 8.8.2 FTF2, allows remote malicious users to execute arbitrary code via an LDAP search request containing "NULL search parameters."
Novell Edirectory 8.7.3
Novell Edirectory 8.8
10
CVSSv2
CVE-2006-4509
Integer overflow in the evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
10
CVSSv2
CVE-2006-4510
The evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request containing a value that is larger than the number of objects transmitted, which triggers an inva...
Novell Edirectory 8.8.1
Novell Edirectory 8.8
10
CVSSv2
CVE-2006-2496
Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.
Novell Edirectory 8.8
Novell Imonitor 2.4
9
CVSSv2
CVE-2009-4653
Stack-based buffer overflow in the dhost module in Novell eDirectory 8.8 SP5 for Windows allows remote authenticated users to cause a denial of service (dhost.exe crash) and possibly execute arbitrary code via a long string to /dhost/modules?I:.
Novell Edirectory 8.8
1 EDB exploit
9
CVSSv2
CVE-2009-4654
Stack-based buffer overflow in the dhost module in Novell eDirectory 8.8 SP5 for Windows allows remote authenticated users to execute arbitrary code via long sadminpwd and verifypwd parameters in a submit action to /dhost/httpstk.
Novell Edirectory 8.8
1 EDB exploit
9
CVSSv2
CVE-2007-3260
HP System Management Homepage (SMH) prior to 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to gain privileges.
Hp System Management Homepage
7.8
CVSSv2
CVE-2006-4520
ncp in Novell eDirectory prior to 8.7.3 SP9, and 8.8.x prior to 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote malicious users to cause a denial of service (daemon crash) when the heap is written to a log file.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
Novell Edirectory
7.5
CVSSv2
CVE-2015-2281
Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On (FSSO) before build 164 allows remote malicious users to execute arbitrary code via a large PROCESS_HELLO message to the Message Dispatcher on TCP port 8000.
Fortinet Single Sign On 4.3
1 EDB exploit
7.5
CVSSv2
CVE-2009-4655
The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote malicious users to hijack sessions via a modified cookie.
Novell Edirectory 8.8.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »