Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5212
Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory prior to 8.8 SP8 Patch 4 allows remote malicious users to inject arbitrary web script or HTML via the rdn parameter.
Novell Edirectory
7.5
CVSSv3
CVE-2016-5747
A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell eDirectory prior to 9.0.1 allows remote malicious users to bypass intended access restrictions by leveraging predictable cookies.
Novell Edirectory
NA
CVE-2014-5213
nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory prior to 8.8 SP8 Patch 4 allows remote authenticated users to obtain sensitive information from process memory via a direct request.
Novell Edirectory
NA
CVE-2008-4479
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 prior to 8.8.3, and 8.7.3 prior to 8.7.3.10 ftf1, allows remote malicious users to execute arbitrary code via a SOAP request with a long Accept-Language header.
Novell Edirectory
NA
CVE-2008-4480
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x prior to 8.8.3, and 8.7.3 prior to 8.7.3.10 ftf1, allows remote malicious users to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocate...
Novell Edirectory
NA
CVE-2008-0924
Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and previous versions, and 8.8.1 and previous versions in the 8.8.x series, allows remote malicious users to cause a denial of service (daemon crash or CPU consumption) or ...
Novell Edirectory
NA
CVE-2006-2496
Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.
Novell Edirectory 8.8
Novell Imonitor 2.4
NA
CVE-2006-4186
The iManager in eMBoxClient.jar in Novell eDirectory 8.7.3.8 writes passwords in plaintext to a log file, which allows local users to obtain passwords by reading the file.
Novell Edirectory 8.7.3.8
NA
CVE-2009-2456
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote malicious users to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).
Novell Edirectory 8.8
NA
CVE-2005-1729
Novell eDirectory 8.7.3 allows remote malicious users to cause a denial of service (application crash) via a URL containing an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1.
Novell Edirectory 8.7.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »