CVE-2008-3159

Integer overflow in ds.dlm, as used by dhost.exe, in Novell eDirectory 8.7.3.10 before 8.7.3 SP10b and 8.8 before 8.8.2 ftf2 allows remote attackers to execute arbitrary code via unspecified vectors that trigger a stack-based buffer overflow, related to "flawed arithmetic."...

CVE-2008-3159

This CVE affects Novell eDirectory: integer overflow in ds.dlm/dhost.exe (port 524) causing a stack-based buffer overflow that enables remote code execution. Affected versions are eDirectory 8.7.3.10 before 8.7.3 SP10b and 8.8 before 8.8.2 ftf2. The flaw is linked to flawed arithmetic and can be ...

Novell eDirectory ds.dlm模块整数溢出漏洞

Novell eDirectory是一个的跨平台的目录服务器。 Novell eDirectory中由dhost.exe所加载的ds.dlm模块存在整数溢出漏洞，如果远程攻击者向默认的TCP 524端口发送了恶意请求的话，就可以触发这个溢出，最终导致栈溢出。攻击者可以通过SEH重新定向来利用这个漏洞执行任意指令。 Novell eDirectory 8.8.2 Novell eDirectory 8.7.3 厂商补丁： Novell ------ 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...