CVE-2008-0924

2008-03-28T18:44:00
ID CVE-2008-0924
Type cve
Reporter cve@mitre.org
Modified 2018-11-01T15:02:00

Description

Stack-based buffer overflow in the DoLBURPRequest function in libnldap in ndsd in Novell eDirectory 8.7.3.9 and earlier, and 8.8.1 and earlier in the 8.8.x series, allows remote attackers to cause a denial of service (daemon crash or CPU consumption) or execute arbitrary code via a long delRequest LDAP Extended Request message, probably involving a long Distinguished Name (DN) field. During analysis the following related page was found.

http://www.zerodayinitiative.com/advisories/ZDI-08-013/