Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:525C44AAD35566C993FDC730822F5D30
HistoryMay 30, 2006 - 12:00 a.m.

Novell eDirectory iMonitor NDS buffer overflow

2006-05-3000:00:00
SAINT Corporation
my.saintcorporation.com
13

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.827 High

EPSS

Percentile

98.4%

JSON

Added: 05/30/2006
CVE: CVE-2006-2496
BID: 18026
OSVDB: 25781

Background

iMonitor is a web service which is a component of Novell eDirectory.

Problem

A buffer overflow in iMonitor allows remote attackers to execute arbitrary commands by sending a long, specially crafted URL request in the NDS directory.

Resolution

Apply the iMonitor security update.

References

<http://www.securityfocus.com/archive/1/434723&gt;

Limitations

Exploit works on Novell eDirectory 8.8.

Platforms

Windows

Related

cve 1
checkpoint_advisories 2
prion 1
zdi 1
securityvulns 1
cvelist 1
saint 3
nvd 1
nessus 1
cve
cve
CVE-2006-2496
2006-05-20 03:02:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Novell eDirectory Buffer Overflow Vulnerability
2006-05-31 00:00:00
Novell eDirectory iMonitor NDS Server Buffer Overflow (CVE-2005-2551; CVE-2006-2496)
2010-06-10 00:00:00
prion
prion
Buffer overflow
2006-05-20 03:02:00
zdi
zdi
Novell eDirectory 8.8 NDS Server Buffer Overflow Vulnerability
2006-06-13 00:00:00
securityvulns
securityvulns
ZDI-06-016: Novell eDirectory 8.8 NDS Server Buffer Overflow Vulnerability
2006-05-23 00:00:00
cvelist
cvelist
CVE-2006-2496
2006-05-20 02:59:00
saint
saint
Novell eDirectory iMonitor NDS buffer overflow
2006-05-30 00:00:00
Novell eDirectory iMonitor NDS buffer overflow
2006-05-30 00:00:00
Novell eDirectory iMonitor NDS buffer overflow
2006-05-30 00:00:00
nvd
nvd
CVE-2006-2496
2006-05-20 03:02:00
nessus
nessus
Novell eDirectory Server iMonitor Multiple Remote Overflows
2005-08-12 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.827 High

EPSS

Percentile

98.4%

JSON
Related for SAINT:525C44AAD35566C993FDC730822F5D30
cve1checkpoint_advisories2prion1zdi1securityvulns1cvelist1saint3nvd1nessus1