Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-9168
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory prior to 9.0.2 could be used by remote attackers for clickjacking.
Novell Edirectory
10
CVSSv2
CVE-2008-4479
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 prior to 8.8.3, and 8.7.3 prior to 8.7.3.10 ftf1, allows remote malicious users to execute arbitrary code via a SOAP request with a long Accept-Language header.
Novell Edirectory
7.5
CVSSv2
CVE-2006-5814
Unspecified vulnerability in Novell eDirectory allows remote malicious users to execute arbitrary code, as demonstrated by vd_novell.pm, a "Novell eDirectory remote exploit." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from ...
Novell Edirectory
5
CVSSv2
CVE-2016-5747
A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell eDirectory prior to 9.0.1 allows remote malicious users to bypass intended access restrictions by leveraging predictable cookies.
Novell Edirectory
5
CVSSv2
CVE-2017-9267
In Novell eDirectory prior to 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers to be used during SSL BIND operations.
Novell Edirectory
6.8
CVSSv2
CVE-2008-0924
Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.1 and previous versions in the 8.8.x series, allows remote malicious users to cause a denial of service (daemon crash or CPU consumption) or ...
Novell Edirectory
10
CVSSv2
CVE-2006-2496
Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.
Novell Edirectory 8.8
Novell Imonitor 2.4
5
CVSSv2
CVE-2005-1729
Novell eDirectory 8.7.3 allows remote malicious users to cause a denial of service (application crash) via a URL containing an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1.
Novell Edirectory 8.7.3
5
CVSSv2
CVE-2009-2456
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote malicious users to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).
Novell Edirectory 8.8
5
CVSSv2
CVE-2009-2457
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote malicious users to cause a denial of service (crash) via a malformed bind LDAP packet.
Novell Edirectory 8.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »