Buffer Overflow in Novell eDirectory LDAP Service
CVE-2008-5091

Currently unrated

Key Information:

Vendor: Novell
Status: Edirectory
Vendor: CVE Published:; 14 November 2008

What is CVE-2008-5091?

A buffer overflow vulnerability exists in the LDAP Service of Novell eDirectory versions prior to SP10a for 8.7.3 and SP3 for 8.8. This flaw arises when an attacker crafts an 'invalid extensibleMatch filter.' Exploitation of this vulnerability can lead to a denial of service condition, resulting in an application crash and disruption of service. System administrators are urged to update to the latest versions to mitigate the risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/30947

vdb-entryx_refsource_BID

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

http://www.securitytracker.com/id?1020788

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2008
Vulnerability Reserved
Nov 14, 2008