Lucene search

K

5 matches found

CVE
CVE
added 2008/11/14 7:20 p.m.55 views

CVE-2008-5094

Heap-based buffer overflow in the NDS Service in Novell eDirectory before 8.8 SP3 has unknown impact and attack vectors.

10CVSS6.7AI score0.00227EPSS
CVE
CVE
added 2008/11/12 9:9 p.m.48 views

CVE-2008-5038

Use-after-free vulnerability in the NetWare Core Protocol (NCP) feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP Extension Information By Name" r...

10CVSS9.7AI score0.19097EPSS
CVE
CVE
added 2008/11/14 7:20 p.m.44 views

CVE-2008-5093

Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack (HTTPSTK) in Novell eDirectory before 8.8 SP3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

4.3CVSS5.4AI score0.00566EPSS
CVE
CVE
added 2018/03/02 8:29 p.m.42 views

CVE-2017-9267

In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers to be used during SSL BIND operations.

7.5CVSS6.9AI score0.0071EPSS
CVE
CVE
added 2006/11/08 11:7 p.m.37 views

CVE-2006-5814

Unspecified vulnerability in Novell eDirectory allows remote attackers to execute arbitrary code, as demonstrated by vd_novell.pm, a "Novell eDirectory remote exploit." NOTE: As of 20061108, this disclosure has no actionable information. However, since it is from a reliable researcher, it is being ...

7.5CVSS7.7AI score0.02391EPSS