Novell EDirectory NULL Base DN Denial Of Service Vulnerability Network Vulnerability

Summary

Novell eDirectory is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause the server to become unresponsive, denying service to legitimate users. Versions prior to Novell eDirectory 8.8.5 ftf1 and eDirectory 8.7.3.10 ftf2 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://www.novell.com
http://www.novell.com/support/viewContent.do?externalId=7004721
http://www.securityfocus.com/bid/36902
http://www.zerodayinitiative.com/advisories/ZDI-09-075/

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3862
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Asterisk T.38 Negotiation Remote Denial Of Service Vulnerability
Cherokee POST request DoS
DNS Amplification Attacks
Comodo Internet Security Denial of Service Vulnerability-02
Freefloat FTP Server 'ALLO' Command Remote Buffer Overflow Vulnerability

Novell eDirectory NULL Base DN Denial Of Service Vulnerability

Take action and discover your vulnerabilities