3 matches found
Code injection
dhost.exe in Novell eDirectory 8.7.3 before sp10 and 8.8.2 allows remote attackers to cause a denial of service CPU consumption via an HTTP request with 1 multiple Connection headers or 2 a Connection header with multiple comma-separated values. NOTE: this might be similar to CVE-2008-1777...
CVE-2008-0927
The CVE-2008-0927 issue is in dhost.exe of Novell eDirectory. Affected products are eDirectory versions before SP10 of 8.7.3 and before 8.8.2, where the dhost.exe process can be forced to consume 100% CPU (DoS) by certain HTTP requests that abuse Connection headers (either multiple Connection hea...
CVE-2008-1777
The CVE-2008-1777 entry concerns the eDirectory Host Environment service (dhost.exe) in Novell eDirectory. Affected version shown in sources is eDirectory 8.8.2, where a remote attacker can cause a denial of service (CPU consumption) by sending a long HTTP HEAD request to TCP port 8028. Related r...