ncp in Novell eDirectory prior to 8.7.3 SP9, and 8.8.x prior to 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote malicious users to cause a denial of service (daemon crash) when the heap is written to a log file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell edirectory 8.8 |
||
novell edirectory 8.8.1 |
||
novell edirectory |