Lucene search

[email protected]CVE-2008-1809

HistoryJul 14, 2008 - 6:41 p.m.

CVE-2008-1809

2008-07-1418:41:00

CWE-119

[email protected]

web.nvd.nist.gov

novell

edirectory

buffer overflow

nvd

cve-2008-1809

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.822 High

EPSS

Percentile

98.4%

JSON

Heap-based buffer overflow in Novell eDirectory 8.7.3 before 8.7.3.10b, and 8.8 before 8.8.2 FTF2, allows remote attackers to execute arbitrary code via an LDAP search request containing “NULL search parameters.”

Affected configurations

NVD

Node

novelledirectoryMatch8.7.3

novelledirectoryMatch8.8

CPENameOperatorVersion
novell:edirectorynovell edirectoryeq8.7.3
novell:edirectorynovell edirectoryeq8.8

CPE	Name	Operator	Version
novell:edirectory	novell edirectory	eq	8.7.3
novell:edirectory	novell edirectory	eq	8.8

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=724

secunia.com/advisories/31036

www.novell.com/support/viewContent.do?externalId=3843876

www.securityfocus.com/bid/30175

www.securitytracker.com/id?1020470

www.vupen.com/english/advisories/2008/2062/references

exchange.xforce.ibmcloud.com/vulnerabilities/43716

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.822 High

EPSS

Percentile

98.4%

JSON

Related for CVE-2008-1809

securityvulns2 nvd1 prion1 seebug1 cvelist1 checkpoint_advisories1 nessus1