Lucene search

K
cve[email protected]CVE-2006-4520
HistoryApr 30, 2007 - 10:19 p.m.

CVE-2006-4520

2007-04-3022:19:00
NVD-CWE-Other
web.nvd.nist.gov
19
novell
edirectory
ncp
vulnerability
cve-2006-4520
denial of service
nvd

6.9 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.042 Low

EPSS

Percentile

92.1%

ncp in Novell eDirectory before 8.7.3 SP9, and 8.8.x before 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote attackers to cause a denial of service (daemon crash) when the heap is written to a log file.

6.9 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.042 Low

EPSS

Percentile

92.1%

Related for CVE-2006-4520