Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory 8.8 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2008-1809
Heap-based buffer overflow in Novell eDirectory 8.7.3 prior to 8.7.3.10b, and 8.8 prior to 8.8.2 FTF2, allows remote malicious users to execute arbitrary code via an LDAP search request containing "NULL search parameters."
Novell Edirectory 8.7.3
Novell Edirectory 8.8
890
VMScore
CVE-2008-3159
Integer overflow in ds.dlm, as used by dhost.exe, in Novell eDirectory 8.7.3.10 prior to 8.7.3 SP10b and 8.8 prior to 8.8.2 ftf2 allows remote malicious users to execute arbitrary code via unspecified vectors that trigger a stack-based buffer overflow, related to "flawed ari...
Novell Edirectory 8.8
Novell Edirectory 8.7.3
890
VMScore
CVE-2006-4510
The evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request containing a value that is larger than the number of objects transmitted, which triggers an inva...
Novell Edirectory 8.8.1
Novell Edirectory 8.8
890
VMScore
CVE-2006-2496
Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.
Novell Edirectory 8.8
Novell Imonitor 2.4
770
VMScore
CVE-2006-5478
Multiple stack-based buffer overflows in Novell eDirectory 8.8.x prior to 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail prior to 3.52e FTF2, allow remote malicious users to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedi...
Novell Edirectory 8.5.27
Novell Edirectory 8.6.2
Novell Edirectory 8.7
Novell Edirectory 8.7.1
Novell Edirectory 8.0
Novell Edirectory 8.7.3
Novell Edirectory 8.5
Novell Edirectory 8.5.12a
Novell Edirectory 8.7.3.8 Presp9
4 EDB exploits
755
VMScore
CVE-2008-0926
The SOAP interface to the eMBox module in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.x prior to 8.8.2, relies on client-side authentication, which allows remote malicious users to bypass authentication via requests for /SOAP URIs, and cause a denial of service (daem...
Novell Edirectory 8.5.27
Novell Edirectory 8.6.2
Novell Edirectory 8.7
Novell Edirectory 8.8
Novell Edirectory
Novell Edirectory 8.7.1
Novell Edirectory 8.5
Novell Edirectory 8.5.12a
Novell Edirectory 8.7.3.8 Presp9
Novell Edirectory 8.7.3.9
Novell Edirectory 8.7.3
Novell Edirectory 8.7.3.8
1 EDB exploit
694
VMScore
CVE-2006-4520
ncp in Novell eDirectory prior to 8.7.3 SP9, and 8.8.x prior to 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote malicious users to cause a denial of service (daemon crash) when the heap is written to a log file.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
Novell Edirectory
668
VMScore
CVE-2006-4177
Heap-based buffer overflow in the NCP engine in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted NCP over IP packet that causes NCP to read more data than intended.
Novell Edirectory
Novell Edirectory 8.8
605
VMScore
CVE-2008-0924
Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.1 and previous versions in the 8.8.x series, allows remote malicious users to cause a denial of service (daemon crash or CPU consumption) or ...
Novell Edirectory
505
VMScore
CVE-2009-0192
Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote malicious users to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a stack-based buffer overflow.
Novell Edirectory 8.8
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »