The evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory prior to 8.8.1 FTF1 allows remote malicious users to execute arbitrary code via a crafted request containing a value that is larger than the number of objects transmitted, which triggers an invalid free of unallocated memory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell edirectory 8.8.1 |
||
novell edirectory 8.8 |