Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
edirectory vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2016-9167
NDSD in Novell eDirectory prior to 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would otherwise be filtered by an ACL.
Novell Edirectory
4.3
CVSSv2
CVE-2016-9168
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory prior to 9.0.2 could be used by remote attackers for clickjacking.
Novell Edirectory
10
CVSSv2
CVE-2008-4479
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 prior to 8.8.3, and 8.7.3 prior to 8.7.3.10 ftf1, allows remote malicious users to execute arbitrary code via a SOAP request with a long Accept-Language header.
Novell Edirectory
7.5
CVSSv2
CVE-2006-5814
Unspecified vulnerability in Novell eDirectory allows remote malicious users to execute arbitrary code, as demonstrated by vd_novell.pm, a "Novell eDirectory remote exploit." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from ...
Novell Edirectory
5
CVSSv2
CVE-2018-7686
Information leakage vulnerability in NetIQ eDirectory prior to 9.1.1 HF1 due to shared memory usage.
Microfocus Edirectory
5
CVSSv2
CVE-2018-1346
Addresses denial of service attack to eDirectory versions before 9.1.
Netiq Edirectory
5
CVSSv2
CVE-2016-5747
A security vulnerability in cookie handling in the http stack implementation in NDSD in Novell eDirectory prior to 9.0.1 allows remote malicious users to bypass intended access restrictions by leveraging predictable cookies.
Novell Edirectory
4.3
CVSSv2
CVE-2014-5212
Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell eDirectory prior to 8.8 SP8 Patch 4 allows remote malicious users to inject arbitrary web script or HTML via the rdn parameter.
Novell Edirectory
5
CVSSv2
CVE-2009-0192
Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote malicious users to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a stack-based buffer overflow.
Novell Edirectory 8.8
1 EDB exploit
5
CVSSv2
CVE-2008-1777
The eDirectory Host Environment service (dhost.exe) in Novell eDirectory 8.8.2 allows remote malicious users to cause a denial of service (CPU consumption) via a long HTTP HEAD request to TCP port 8028.
Novell Edirectory 8.8.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »