Описание
Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-0895
- https://bugzilla.novell.com/show_bug.cgi?id=524344
- https://bugzilla.novell.com/show_bug.cgi?id=545887
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50616
- http://secunia.com/advisories/37554
- http://www.iss.net/threats/356.html
- http://www.novell.com/support/viewContent.do?externalId=7004912
- http://www.securityfocus.com/bid/37184
- http://www.vupen.com/english/advisories/2009/3379
EPSS
Процентиль: 96%
0.26227
Средний
CVE ID
Связанные уязвимости
nvd
около 16 лет назад
Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
EPSS
Процентиль: 96%
0.26227
Средний