Buffer Overflow Vulnerability in Novell eDirectory's iMonitor Component
CVE-2009-0192

Currently unrated

Key Information:

Vendor: Novell
Status: Edirectory
Vendor: CVE Published:; 14 July 2009

What is CVE-2009-0192?

The iMonitor component in Novell eDirectory contains an off-by-one error that can be exploited through a specially crafted HTTP request. By manipulating the Accept-Language header, attackers can trigger a stack-based buffer overflow, potentially allowing them to execute arbitrary code. This type of vulnerability underscores the need for rigorous input validation and security measures to prevent unauthorized access and system compromise.

References

http://secunia.com/advisories/34160

third-party-advisoryx_refsource_SECUNIA

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/51703

vdb-entryx_refsource_XF

EPSS Score

12% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 14, 2009
Vulnerability Reserved
Jan 20, 2009