EUVD-1999-1067

Malware in sbrugna...

NetWare Core Protocol (NCP) Detection

The script checks the presence of a service supporting the NetWare Core Protocol NCP. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Wireshark NCP Parser Denial of Service Vulnerability (CNVD-2016-02649)

Wireshark formerly known as Ethereal is a suite of network packet analysis software developed by the Wireshark team. A security vulnerability in the epan/dissectors/packet-ncp2222.inc file in the NCP parser in versions 2.0.x prior to Wireshark 2.0.3 can be exploited by remote attackers to cause a...

ncp-serverinfo NSE Script

Retrieves eDirectory server information OS version, server name, mounts, etc. from the Novell NetWare Core Protocol NCP service. Example Usage nmap -sV -sC Script Output PORT STATE SERVICE 524/tcp open ncp | ncp-serverinfo: | Server name: LINUX-L84T | Tree Name: IIT-LABTREE | OS Version: 5.70 rev...

Novell eDirectory NCP Memory Corruption Vulnerability - (Linux)

This host is running Novell eDirectory and is prone to Memory Corruption Vulnerability. OpenVAS Vulnerability Test $Id: gbnovelledirncpmemcrptnvulnlin.nasl 7277 2017-09-26 12:45:58Z cfischer $ Novell eDirectory NCP Memory Corruption Vulnerability - Linux Authors: Veerendra GG Copyright: Copyright...

CVE-2008-5038

CVE-2008-5038 analyzes a Use-After-Free in the NetWare Core Protocol (NCP) of Novell eDirectory. Affected: eDirectory 8.7.3 SP10 before SP10 FTF1 and 8.8 SP2 for Windows. Root cause: memory corruption caused by a sequence of Get NCP Extension Information By Name requests that cause one thread to ...

CVE-2008-5038

Use-after-free vulnerability in the NetWare Core Protocol NCP feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP Extension Information By Name"...

PT-2008-6192 · Novell +1 · Netware Core Protocol +2

Name of the Vulnerable Software and Affected Versions: Novell eDirectory versions 8.7.3 SP10 through 8.7.3 SP10 before FTF1 Novell eDirectory version 8.8 SP2 for Windows Description: The issue is related to a use-after-free vulnerability in the NetWare Core Protocol NCP feature. This vulnerabilit...

CVE-2008-4480

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer...

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

Integer overflow

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

CVE-2008-4480

Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error that under-allocates a heap buffer...

CVE-2008-4478

Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted 1 Content-Length header in a SOAP request or 2 Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer...

Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, the service responsible for directory replication which is bound b...