Описание
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search request with a NULL BaseDN value.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp2:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp3:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp4:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp5:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp6:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp7:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp8:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3:sp9:windows:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3.8:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.7.3.9:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:sp1:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:sp2:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:sp3:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8:sp4:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*
cpe:2.3:a:novell:edirectory:8.8.2:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00667
Низкий
5 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
почти 4 года назад
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search request with a NULL BaseDN value.
EPSS
Процентиль: 71%
0.00667
Низкий
5 Medium
CVSS2
Дефекты
CWE-287