Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory 8.8 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0925
Cross-site scripting (XSS) vulnerability in the iMonitor interface in Novell eDirectory 8.7.3.x prior to 8.7.3 sp10, and 8.8.x prior to 8.8.2 ftf2, allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters that are used within "error mes...
Novell Edirectory 8.8.1
Novell Edirectory 8.8
Novell Edirectory 8.7.3.9
Novell Edirectory 8.8.2
NA
CVE-2008-0924
Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.1 and previous versions in the 8.8.x series, allows remote malicious users to cause a denial of service (daemon crash or CPU consumption) or ...
Novell Edirectory
NA
CVE-2008-0926
The SOAP interface to the eMBox module in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.x prior to 8.8.2, relies on client-side authentication, which allows remote malicious users to bypass authentication via requests for /SOAP URIs, and cause a denial of service (daem...
Novell Edirectory 8.5.27
Novell Edirectory 8.6.2
Novell Edirectory 8.7
Novell Edirectory 8.8
Novell Edirectory
Novell Edirectory 8.7.1
Novell Edirectory 8.5
Novell Edirectory 8.5.12a
Novell Edirectory 8.7.3.8 Presp9
Novell Edirectory 8.7.3.9
Novell Edirectory 8.7.3
Novell Edirectory 8.7.3.8
1 EDB exploit
NA
CVE-2006-4520
ncp in Novell eDirectory prior to 8.7.3 SP9, and 8.8.x prior to 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote malicious users to cause a denial of service (daemon crash) when the heap is written to a log file.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
Novell Edirectory
NA
CVE-2006-5813
Unspecified vulnerability in Novell eDirectory 8.8 allows malicious users to cause a denial of service, as demonstrated by vd_novell3.pm, a "Novell eDirectory 8.8 DoS." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from a reli...
Novell Edirectory 8.8
NA
CVE-2006-4521
The BerDecodeLoginDataRequest function in the libnmasldap.so NMAS module in Novell eDirectory 8.8 and 8.8.1 before the Security Services 2.0.3 patch does not properly increment a pointer when handling certain input, which allows remote malicious users to cause a denial of service...
Novell Edirectory 8.8
Novell Edirectory 8.8.1
NA
CVE-2006-4177
Heap-based buffer overflow in the NCP engine in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted NCP over IP packet that causes NCP to read more data than intended.
Novell Edirectory
Novell Edirectory 8.8
NA
CVE-2006-5478
Multiple stack-based buffer overflows in Novell eDirectory 8.8.x prior to 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail prior to 3.52e FTF2, allow remote malicious users to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedi...
Novell Edirectory 8.5.27
Novell Edirectory 8.6.2
Novell Edirectory 8.7
Novell Edirectory 8.7.1
Novell Edirectory 8.0
Novell Edirectory 8.7.3
Novell Edirectory 8.5
Novell Edirectory 8.5.12a
Novell Edirectory 8.7.3.8 Presp9
4 EDB exploits
NA
CVE-2006-4509
Integer overflow in the evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request.
Novell Edirectory 8.8
Novell Edirectory 8.8.1
NA
CVE-2006-4510
The evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request containing a value that is larger than the number of objects transmitted, which triggers an inva...
Novell Edirectory 8.8.1
Novell Edirectory 8.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »