Lucene search
AnonymousZDI-08-064HistoryOct 08, 2008 - 12:00 a.m.
Novell eDirectory dhost.exe Accept Language Header Heap Overflow Vulnerability
2008-10-0800:00:00
Anonymous
www.zerodayinitiative.com
10
0.896 High
EPSS
Percentile
98.8%
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Novell eDirectory. Authentication is not required to exploit this vulnerability. The specific flaw resides in the web console running on TCP ports 8028 and 8030. The server exposes a web interface and accepts SOAP connections. The service copies the contents of the Accept-Language header within a SOAP request into a fixed-length buffer without any bounds checking. If an attacker sends a specially crafted request it will trigger an overflow during a memory copy operation leading to arbitrary code execution under the context of the SYSTEM user.
Related
cvelist
cvelist
CVE-2008-4479
2008-10-14 22:00:00
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2008-4479
2008-10-14 22:36:58
prion
prion
Heap overflow
2008-10-14 22:36:00
cve
cve
CVE-2008-4479
2008-10-14 22:36:58
securityvulns
securityvulns
ZDI-08-064: Novell eDirectory dhost.exe Accept Language Header Heap Overflow Vulnerability
2008-10-09 00:00:00
Novell eDirectory multiple security vulnerabilities
2008-10-09 00:00:00
nessus
nessus
Novell eDirectory < 8.7.3 SP10 FTF1 Multiple Vulnerabilities
2008-10-07 00:00:00
seebug
seebug
Novell eDirectory多个缓冲区溢出漏洞
2008-10-09 00:00:00