Описание
Heap-based buffer overflow in the NCP engine in Novell eDirectory before 8.8.1 FTF1 allows remote attackers to execute arbitrary code via a crafted NCP over IP packet that causes NCP to read more data than intended.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 8.8.1 (включая)
Одно из
cpe:2.3:a:novell:edirectory:*:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.09582
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Heap-based buffer overflow in the NCP engine in Novell eDirectory before 8.8.1 FTF1 allows remote attackers to execute arbitrary code via a crafted NCP over IP packet that causes NCP to read more data than intended.
EPSS
Процентиль: 93%
0.09582
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other