Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdi1c239c43f521145fa8385d64a9c32243ZDI-10-024
HistoryMar 02, 2010 - 12:00 a.m.

Novell eDirectory SOAP Request Parsing Denial of Service Vulnerability

2010-03-0200:00:00
1c239c43f521145fa8385d64a9c32243
www.zerodayinitiative.com
15

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

91.0%

JSON

This vulnerability allows remote attackers to deny services on vulnerable installations of Novell eDirectory Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NDS daemon’s SOAP service. When a malformed request is made to the novell.embox.connmgr.serverinfo SOAP action, the daemon makes an illegal reference thereby resulting in a denial of service.

Related

nessus 1
openvas 1
cve 1
prion 1
cvelist 1
nvd 1
nessus
nessus
Novell eDirectory < 8.8 SP5 Patch 3 eMBox SOAP Request DoS
2010-03-01 00:00:00
openvas
openvas
Novell eDirectory eMBox SOAP Request Denial Of Service Vulnerability
2010-02-10 00:00:00
cve
cve
CVE-2010-0666
2022-10-03 16:21:12
prion
prion
Design/Logic Flaw
2010-02-19 17:30:00
cvelist
cvelist
CVE-2010-0666
2022-10-03 16:21:12
nvd
nvd
CVE-2010-0666
2010-02-19 17:30:01

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.03 Low

EPSS

Percentile

91.0%

JSON
Related for ZDI-10-024
nessus1openvas1cve1prion1cvelist1nvd1