Novell eDirectory IMONITOR Cross-Site Scripting (CVE-2014-5212)

A cross-site scripting vulnerability exists in Novell eDirectory IMONITOR. The vulnerability is due to an input validation error while parsing the rdn parameter. A remote attacker could exploit this vulnerability to execute arbitrary script or HTML code in the user's browser session...

Novell eDirectory evtFilteredMonitorEventsRequest Invalid free Code Execution - Ver2 (CVE-2006-4510)

A code execution vulnerability has been reported in Novell eDirectory. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2014-5213

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote authenticated users to obtain sensitive information from process memory via a direct request...

Server side request forgery (ssrf)

nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote authenticated users to obtain sensitive information from process memory via a direct request...

Cross site scripting

Cross-site scripting XSS vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote attackers to inject arbitrary web script or HTML via the rdn parameter...

CVE-2014-5212

Cross-site scripting XSS vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote attackers to inject arbitrary web script or HTML via the rdn parameter...

CVE-2014-5212

Cross-site scripting XSS vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote attackers to inject arbitrary web script or HTML via the rdn parameter...

EUVD-2014-5110

Cross-site scripting XSS vulnerability in nds/search/data in iMonitor in Novell eDirectory before 8.8 SP8 Patch 4 allows remote attackers to inject arbitrary web script or HTML via the rdn parameter...

CVE-2014-5212

CVE-2014-5212 is a reflected cross-site scripting (XSS) vulnerability in NetIQ/Novell eDirectory iMonitor (nds/search/data) that allows an attacker to inject scripts via the rdn parameter. Affected product: eDirectory NDS iMonitor before 8.8 SP8 Patch 4. Root cause: input validation error when pa...

Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/20655/info The Novell eDirectory server iMonitor is prone to a stack-based buffer-overflow vulnerability because it fails to perform sufficient bounds checking on client-supplied data before copying it to a buffer. An...

Novell eDirectory NDS Server Host Header Overflow

No description provided by source. $Id: edirectoryhost.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

Novell eDirectory 8.8 SP5 (Post Auth) Remote BOF Exploit

No description provided by source. Exploit Title: Novell eDirectory 8.8 SP5 Post Auth Remote BOF Exploit 0day Date: 06/01/2010 Author: His0k4 & Simo36 Version: 8.8 SP5 Tested on: Windows xp sp3 Code : !usr\bin\perl use WWW::Mechanize; use HTTP::Cookies; use HTTP::Headers; $target=$ARGV0; if!$ARGV...

Novell eDirectory 8.x - eMBox Utility 'edirutil' Command Unspecified Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28441/info Novell eDirectory is prone to an unspecified vulnerability that can result in unauthorized file access or a denial of service. Unauthenticated attackers can exploit this issue. This issue affects eDirectory 8.8...

Novell eDirectory 8.8.5 DHost Weak Session Cookie Session Hijacking Vulnerability

source: http://www.securityfocus.com/bid/38782/info Novell eDirectory is prone to a session-hijacking vulnerability. An attacker can exploit this issue to gain access to the affected application. Novell eDirectory 8.8.5 is vulnerable; other versions may also be affected. $Id:...

Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/20655/info The Novell eDirectory server iMonitor is prone to a stack-based buffer-overflow vulnerability because it fails to perform sufficient bounds checking on client-supplied data before copying it to a buffer. An...

Novell eDirectory 8.8 '/dhost/modules?I:' Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37009/info Novell eDirectory is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code in the contex...

Novel eDirectory DHost Console 8.8 SP3 Local SEH Overwrite

No description provided by source. Exploit Title: Novel eDirectory DHost Console 8.8 SP3 Local SEH Overwrite Date: 17/10/2010 Author: d0lc3 @rmallof - http://elotrolad0.blogspot.com/ Software Link: http://www.novell.com/ Version: 8.8 SP3 20216.67 Tested on: win32 xp sp3 spa Summary: DHostCon.exe ...

Novell eDirectory <= 9.0 DHost Remote Buffer Overflow Exploit

No description provided by source. / . \ \ \ \ | | / | | | | \ / / /\ \ / \ | | \ / | |/ | |/ / \ / \ | / \ // | Y / ^ /\ | //\ \ /| / / || /\ | \ | \ / / / / 30\10\06 / || / / mm. dM8 YMMMb. dMM8 YMMMMb dMMM' YMMMb dMMMP There are doors I have yet to open YMMM MMM' windows I have yet...

Novell eDirectory 8 Buffer Overflow

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

Novell eDirectory < 8.7.3 SP 10 / 8.8.2 - HTTP headers DoS Vulnerability

No description provided by source. = Affected software : Editor : Novell Name : eDirectory Version : 8.7.3 SP 10 and 8.8.2 Services : TCP/8028 HTTP and TCP/8030 HTTPS = External references : http://www.novell.com/support/viewContent.do?externalId=3829452&sliceId=1...