NetWare Core Protocol (NCP) Detection

The script checks the presence of a service supporting the NetWare Core Protocol NCP. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2010-4327

Unspecified vulnerability in the NCP service in Novell eDirectory 8.8.5 before 8.8.5.6 and 8.8.6 before 8.8.6.2 allows remote attackers to cause a denial of service hang via a malformed FileSetLock request to port 524...

IBM DB2 Administration Server (DAS) Buffer Overflow Vulnerability

The host is running IBM DB2 and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbibmdb2dasbofvuln.nasl 7052 2017-09-04 11:50:51Z teissa $ IBM DB2 Administration Server DAS Buffer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2011 Greenbone Networks...

IBM Db2 Administration Server (DAS) Buffer Overflow Vulnerability

IBM Db2 is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

IBM DB2 db2dasrrm receiveDASMessage Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM DB2. Authentication is not required to exploit this vulnerability. The flaw exists within the db2dasrrm component which listens by default on TCP port 524. When allocating a buffer within...

Novell eDirectory Server Malformed Index Denial of Service Vulnerability

This vulnerability allows attackers to deny services on vulnerable installations of Novell eDirectory. Authentication is not required in order to trigger this vulnerability. The flaw exists within Novell's eDirectory Server's NCP implementation which binds, by default, to TCP port 524. While...

ZDI-08-065: Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability

ZDI-08-065: Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-065 October 8, 2008 -- CVE ID: CVE-2008-4478 -- Affected Vendors: Novell -- Affected Products: Novell eDirectory -- TippingPointTM IPS Customer Protection:...

Novell eDirectory Core Protocol Opcode 0x0F Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, the service responsible for directory replication which is bound b...

ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerability

ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-041 July 10, 2008 -- Affected Vendors: Novell -- Affected Products: Novell eDirectory -- TippingPointTM IPS Customer Protection: TippingPoint IPS customers have bee...

Novell eDirectory dhost Integer Overflow Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw exists within dhost.exe, bound by default to TCP port 524. Flawed arithmetic applied to a...

BindView RAZOR Advisory: Novell Netware

I contacted Novell about this and they feel the recommendations section is fine the way it is. No patch, just configuration issues. The seriousness can probably best be assessed by running the NCPQuery tool against your Netware servers that are running IP. Probably the most interesting thing is t...