Lucene search

[email protected]CVE-2008-0927

HistoryApr 14, 2008 - 4:05 p.m.

CVE-2008-0927

2008-04-1416:05:00

CWE-399

[email protected]

web.nvd.nist.gov

novell

edirectory

dhost.exe

cpu consumption

dos

http

cve-2008-0927

cve-2008-1777

nvd

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.968 High

EPSS

Percentile

99.7%

JSON

dhost.exe in Novell eDirectory 8.7.3 before sp10 and 8.8.2 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with (1) multiple Connection headers or (2) a Connection header with multiple comma-separated values. NOTE: this might be similar to CVE-2008-1777.

CPENameOperatorVersion
microsoft:windows-ntmicrosoft windows-nteq2000
microsoft:windows-ntmicrosoft windows-nteq2003

CPE	Name	Operator	Version
microsoft:windows-nt	microsoft windows-nt	eq	2000
microsoft:windows-nt	microsoft windows-nt	eq	2003

References

secunia.com/advisories/29805

www.novell.com/support/viewContent.do?externalId=3829452&sliceId=1

www.securityfocus.com/archive/1/491622/100/0/threaded

www.securityfocus.com/bid/28757

www.securitytracker.com/id?1019836

www.vupen.com/english/advisories/2008/1217/references

exchange.xforce.ibmcloud.com/vulnerabilities/41787

www.exploit-db.com/exploits/5547

6.6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.968 High

EPSS

Percentile

99.7%

JSON

Related for CVE-2008-0927

prion2 packetstorm1 seebug3 exploitpack1 nessus1 checkpoint_advisories1 securityvulns1 exploitdb1 cve1