Lucene search

PRIOn knowledge basePRION:CVE-2009-2456

HistoryJul 14, 2009 - 8:30 p.m.

Design/Logic Flaw

2009-07-1420:30:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.4%

JSON

The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote attackers to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).

CPENameOperatorVersion
edirectoryeq8.8
edirectoryeq8.8 sp3
edirectoryeq8.8 sp1
edirectoryeq8.8 sp4
edirectoryeq8.8 sp2

Name	Operator	Version
edirectory	eq	8.8
edirectory	eq	8.8 sp3
edirectory	eq	8.8 sp1
edirectory	eq	8.8 sp4
edirectory	eq	8.8 sp2

References

osvdb.org/55848

secunia.com/advisories/34160

www.novell.com/support/viewContent.do?externalId=3426981

www.securityfocus.com/bid/35666

www.vupen.com/english/advisories/2009/1883

exchange.xforce.ibmcloud.com/vulnerabilities/51705

7.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.4%

JSON

Related for PRION:CVE-2009-2456