 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.900599 |
| Categoría: | Denial of Service |
| Título: | Novell eDirectory Multiple Vulnerabilities (Jul 2009) - Windows |
| Resumen: | Novell eDirectory is prone to multiple vulnerabilities. |
| Descripción: | Summary: Novell eDirectory is prone to multiple vulnerabilities. Vulnerability Insight: - An unspecified error occurs in DS\NDSD component while processing malformed LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN). - An unspecified error occurs in DS\NDSD component while processing malformed bind LDAP packets. - Off-by-one error occurs in the iMonitor component while processing malicious HTTP request with a crafted Accept-Language header. Vulnerability Impact: Successful exploitation allows attackers to crash the service leading to denial of service condition. Affected Software/OS: Novell eDirectory 8.8 before SP5 on Windows. Solution: Upgrade to Novell eDirectory 8.8 SP5 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-0192 BugTraq ID: 35666 http://www.securityfocus.com/bid/35666 Bugtraq: 20090714 Secunia Research: Novell eDirectory iMonitor "Accept-Language" Buffer Overflow (Google Search) http://www.securityfocus.com/archive/1/504924/100/0/threaded http://secunia.com/secunia_research/2009-13/ http://osvdb.org/55847 http://secunia.com/advisories/34160 http://www.vupen.com/english/advisories/2009/1883 XForce ISS Database: edirectory-imonitor-acceptlanguage-bo(51703) https://exchange.xforce.ibmcloud.com/vulnerabilities/51703 Common Vulnerability Exposure (CVE) ID: CVE-2009-2456 http://osvdb.org/55848 XForce ISS Database: edirectory-rdns-dos(51705) https://exchange.xforce.ibmcloud.com/vulnerabilities/51705 Common Vulnerability Exposure (CVE) ID: CVE-2009-2457 http://osvdb.org/55849 XForce ISS Database: edirectory-ldap-dos(51706) https://exchange.xforce.ibmcloud.com/vulnerabilities/51706 |
| Copyright | Copyright (C) 2009 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |