Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell edirectory vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4653
Stack-based buffer overflow in the dhost module in Novell eDirectory 8.8 SP5 for Windows allows remote authenticated users to cause a denial of service (dhost.exe crash) and possibly execute arbitrary code via a long string to /dhost/modules?I:.
Novell Edirectory 8.8
1 EDB exploit
NA
CVE-2009-4654
Stack-based buffer overflow in the dhost module in Novell eDirectory 8.8 SP5 for Windows allows remote authenticated users to execute arbitrary code via long sadminpwd and verifypwd parameters in a submit action to /dhost/httpstk.
Novell Edirectory 8.8
1 EDB exploit
NA
CVE-2009-4655
The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote malicious users to hijack sessions via a modified cookie.
Novell Edirectory 8.8.5
1 EDB exploit
NA
CVE-2009-2456
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote malicious users to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).
Novell Edirectory 8.8
NA
CVE-2009-2457
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote malicious users to cause a denial of service (crash) via a malformed bind LDAP packet.
Novell Edirectory 8.8
NA
CVE-2006-4186
The iManager in eMBoxClient.jar in Novell eDirectory 8.7.3.8 writes passwords in plaintext to a log file, which allows local users to obtain passwords by reading the file.
Novell Edirectory 8.7.3.8
NA
CVE-2009-0192
Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote malicious users to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a stack-based buffer overflow.
Novell Edirectory 8.8
1 EDB exploit
NA
CVE-2005-1729
Novell eDirectory 8.7.3 allows remote malicious users to cause a denial of service (application crash) via a URL containing an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1.
Novell Edirectory 8.7.3
NA
CVE-2012-0432
Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x prior to 8.8.7.2 allows remote malicious users to have an unspecified impact via unknown vectors.
Microfocus Edirectory 8.8.7.0
Microfocus Edirectory 8.8.7.1
2 EDB exploits
NA
CVE-2009-4486
Stack-based buffer overflow in the eDirectory plugin in Novell iManager prior to 2.7.3 allows remote malicious users to execute arbitrary code via vectors that trigger long arguments to an unspecified sub-application, related to importing and exporting from a schema.
Novell Imanager 1.5
Novell Imanager
Novell Imanager 2.7.1
Novell Imanager 2.0.2
Novell Imanager 2.0
Novell Imanager 2.6.0
Novell Imanager 2.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »