10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.827 High
EPSS
Percentile
98.4%
Added: 05/30/2006
CVE: CVE-2006-2496
BID: 18026
OSVDB: 25781
iMonitor is a web service which is a component of Novell eDirectory.
A buffer overflow in iMonitor allows remote attackers to execute arbitrary commands by sending a long, specially crafted URL request in the NDS directory.
Apply the iMonitor security update.
<http://www.securityfocus.com/archive/1/434723>
Exploit works on Novell eDirectory 8.8.
Windows