A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking.
[
{
"product": "Novell eDirectory",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Novell eDirectory"
}
]
}
]