EUVD-1999-1067

Malware in sbrugna...

NetWare Core Protocol (NCP) Detection

The script checks the presence of a service supporting the NetWare Core Protocol NCP. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Wireshark NCP Parser Denial of Service Vulnerability (CNVD-2016-02649)

Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. A security vulnerability in the epan/dissectors/packet-ncp2222.inc file in the NCP parser in versions 2.0.x prior to Wireshark 2.0.3 can be exploited by remote attackers to cause a...

ncp-serverinfo NSE Script

Retrieves eDirectory server information OS version, server name, mounts, etc. from the Novell NetWare Core Protocol NCP service. Example Usage nmap -sV -sC Script Output PORT STATE SERVICE 524/tcp open ncp | ncp-serverinfo: | Server name: LINUX-L84T | Tree Name: IIT-LABTREE | OS Version: 5.70 rev...

Novell eDirectory NCP Memory Corruption Vulnerability - (Linux)

This host is running Novell eDirectory and is prone to Memory Corruption Vulnerability. OpenVAS Vulnerability Test $Id: gbnovelledirncpmemcrptnvulnlin.nasl 7277 2017-09-26 12:45:58Z cfischer $ Novell eDirectory NCP Memory Corruption Vulnerability - Linux Authors: Veerendra GG Copyright: Copyright...

CVE-2008-5038

CVE-2008-5038 analyzes a Use-After-Free in the NetWare Core Protocol (NCP) of Novell eDirectory. Affected: eDirectory 8.7.3 SP10 before SP10 FTF1 and 8.8 SP2 for Windows. Root cause: memory corruption caused by a sequence of Get NCP Extension Information By Name requests that cause one thread to ...

CVE-2008-5038

Use-after-free vulnerability in the NetWare Core Protocol NCP feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP Extension Information By Name"...

PT-2008-6192 · Novell +1 · Netware Core Protocol +2

Name of the Vulnerable Software and Affected Versions: Novell eDirectory versions 8.7.3 SP10 through 8.7.3 SP10 before FTF1 Novell eDirectory version 8.8 SP2 for Windows Description: The issue is related to a use-after-free vulnerability in the NetWare Core Protocol NCP feature. This vulnerabilit...

CVE-2008-4480

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer...

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

Integer overflow

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

CVE-2008-4480

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer...

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

Novell eDirectory多个缓冲区溢出漏洞

BUGTRAQ ID: 31553 CVE ID：CVE-2008-4478 CVE-2008-4479 CVE-2008-4480 CNCVE ID：CNCVE-20084478 CNCVE-20084479 CNCVE-20084480 Novell eDirectory是一款支持轻量目录访问协议LDAP并基于目录的身份管理系统。 Novell eDirectory存在多个缓冲区溢出如下： -WEB控制台运行在TCP...

Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, the service responsible for directory replication which is bound b...