| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-5038 | 10.0 |
Use-after-free vulnerability in the NetWare Core Protocol (NCP) feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequ
|
02-02-2024 - 15:49 | 12-11-2008 - 21:09 | |
| CVE-2008-4480 | 10.0 |
Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.x before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a crafted Netware Core Protocol opcode 0x24 message that triggers a calculation error
|
02-11-2018 - 13:07 | 14-10-2008 - 22:36 | |
| CVE-2009-0192 | 5.0 |
Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote attackers to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a stack-bas
|
11-10-2018 - 21:00 | 14-07-2009 - 20:30 | |
| CVE-2009-2457 | 5.0 |
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote attackers to cause a denial of service (crash) via a malformed bind LDAP packet.
|
17-08-2017 - 01:30 | 14-07-2009 - 20:30 | |
| CVE-2009-2456 | 5.0 |
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote attackers to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).
|
17-08-2017 - 01:30 | 14-07-2009 - 20:30 | |
| CVE-2008-5091 | 10.0 |
Buffer overflow in the LDAP Service in Novell eDirectory 8.7.3 before SP10a and 8.8 before SP3 allows attackers to cause a denial of service (application crash) via vectors involving an "invalid extensibleMatch filter."
|
08-08-2017 - 01:33 | 14-11-2008 - 19:20 | |
| CVE-2008-5093 | 4.3 |
Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack (HTTPSTK) in Novell eDirectory before 8.8 SP3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
08-08-2017 - 01:33 | 14-11-2008 - 19:20 | |
| CVE-2008-5094 | 10.0 |
Heap-based buffer overflow in the NDS Service in Novell eDirectory before 8.8 SP3 has unknown impact and attack vectors.
|
31-10-2012 - 03:06 | 14-11-2008 - 19:20 | |
| CVE-2008-5092 | 10.0 |
Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 8.8 SP3 have unknown impact and attack vectors related to the (1) HTTP language header and (2) HTTP content-length header.
|
31-10-2012 - 03:06 | 14-11-2008 - 19:20 | |
| CVE-2010-0666 | 5.0 |
Unspecified vulnerability in eMBox in Novell eDirectory 8.8 SP5 Patch 2 and earlier allows remote attackers to cause a denial of service (crash) via unknown a crafted SOAP request, a different issue than CVE-2008-0926.
|
22-02-2010 - 05:00 | 19-02-2010 - 17:30 |