3 matches found
CVE-2008-0924
The CVE-2008-0924 issue affects Novell eDirectory (Linux and possibly others) where a stack-based buffer overflow in the DoLBURPRequest path of libnldap/ndsd is triggered by a long delRequest LDAP Extended Request, likely involving a long DN. Affected versions are eDirectory 8.7.3.9 and earlier, ...
Novell eDirectory LDAP扩展请求消息栈溢出漏洞
BUGTRAQ ID: 28434 CVECAN ID: CVE-2008-0924 Novell eDirectory是一个的跨平台的目录服务器。 Novell eDirectory处理畸形的请求数据时存在缓冲区溢出漏洞,如果向Novell eDirectory服务器发送了超长的LDAP扩展请求消息的话,就可能触发栈溢出,导致执行任意指令。 Novell eDirectory = 8.8.1 Novell eDirectory = 8.7.3.9 Novell ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
ZDI-08-013: Novell eDirectory for Linux Stack Overflow
ZDI-08-013: Novell eDirectory for Linux Stack Overflow http://www.zerodayinitiative.com/advisories/ZDI-08-013 March 26, 2008 -- CVE ID: CVE-2008-0924 -- Affected Vendors: Novell -- Affected Products: Novell eDirectory -- TippingPointTM IPS Customer Protection: TippingPoint IPS customers have been...