Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2006-4521
The BerDecodeLoginDataRequest function in the libnmasldap.so NMAS module in Novell eDirectory 8.8 and 8.8.1 before the Security Services 2.0.3 patch does not properly increment a pointer when handling certain input, which allows remote malicious users to cause a denial of service...
Novell Edirectory 8.8
Novell Edirectory 8.8.1
890
VMScore
CVE-2008-3159
Integer overflow in ds.dlm, as used by dhost.exe, in Novell eDirectory 8.7.3.10 prior to 8.7.3 SP10b and 8.8 prior to 8.8.2 ftf2 allows remote malicious users to execute arbitrary code via unspecified vectors that trigger a stack-based buffer overflow, related to "flawed ari...
Novell Edirectory 8.8
Novell Edirectory 8.7.3
668
VMScore
CVE-2002-2119
Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote malicious users to conduct brute force password guessing.
Novell Edirectory 8.6.2
Novell Edirectory 8.7
890
VMScore
CVE-2008-1809
Heap-based buffer overflow in Novell eDirectory 8.7.3 prior to 8.7.3.10b, and 8.8 prior to 8.8.2 FTF2, allows remote malicious users to execute arbitrary code via an LDAP search request containing "NULL search parameters."
Novell Edirectory 8.7.3
Novell Edirectory 8.8
445
VMScore
CVE-2010-4327
Unspecified vulnerability in the NCP service in Novell eDirectory 8.8.5 prior to 8.8.5.6 and 8.8.6 prior to 8.8.6.2 allows remote malicious users to cause a denial of service (hang) via a malformed FileSetLock request to port 524.
Novell Edirectory 8.8.6
Novell Edirectory 8.8.5
383
VMScore
CVE-2017-5186
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x prior to 3.0.2.1, Novell eDirectory 8.8.x prior to 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x prior to 9.0.2 Hotfix 2 (9.0.2.2) use the deprecated MD5 hashing algorithm in a communications certificate.
Netiq Edirectory 9.0
Netiq Imanager 3.0.1
Novell Imanager
Netiq Imanager 3.0
Netiq Edirectory 9.0.2
Netiq Edirectory 9.0.1
Netiq Imanager 3.0.2
Novell Edirectory
383
VMScore
CVE-2014-5212
Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory prior to 8.8 SP8 Patch 4 allows remote malicious users to inject arbitrary web script or HTML via the rdn parameter.
Novell Edirectory
356
VMScore
CVE-2014-5213
nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory prior to 8.8 SP8 Patch 4 allows remote authenticated users to obtain sensitive information from process memory via a direct request.
Novell Edirectory
890
VMScore
CVE-2008-4480
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x prior to 8.8.3, and 8.7.3 prior to 8.7.3.10 ftf1, allows remote malicious users to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocate...
Novell Edirectory
445
VMScore
CVE-2016-9167
NDSD in Novell eDirectory prior to 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would otherwise be filtered by an ACL.
Novell Edirectory
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »