Novell eDirectory Multiple Flaws Let Remote Users Deny Service, Hijack Sessions, and Execute Arbitrary Code - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Directory) > Novell eDirectory

Vendors: Novell

Novell eDirectory Multiple Flaws Let Remote Users Deny Service, Hijack Sessions, and Execute Arbitrary Code

SecurityTracker Alert ID: 1024055

SecurityTracker URL: http://securitytracker.com/id/1024055

CVE Reference: CVE-2009-4653 (Links to External Site)

Date: Jun 3 2010

Impact: Denial of service via network, Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Version(s): 8.8.x

Description: A vulnerability was reported in Novell eDirectory. A remote user can execute arbitrary code on the target system. A remote user can cause denial of service conditions. A remote user may be able to hijack sessions.

A remote user can send specially crafted data to trigger a buffer overflow and execute arbitrary code on the target system. The code will run with the privileges of the target service.

A remote user can send specially crafted data to cause the target NDSD service to crash. This vulnerability was reported by Zero Day Initiative.

The system uses a predictable session cookie. A remote user may be able to hijack sessions.

Impact: A remote user can execute arbitrary code on the target system.

A remote user can cause denial of service conditions.

A remote user may be able to hijack sessions.

Solution: The vendor has issued a fix (8.8 SP5 Patch 4).

The vendor's advisory is available at:

http://www.novell.com/support/viewContent.do?externalId=3426981

Vendor URL: www.novell.com/support/viewContent.do?externalId=3426981 (Links to External Site)

Cause: Boundary error

Underlying OS: Linux (Red Hat Enterprise), Linux (SuSE), UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS), Windows (2000), Windows (2003)

Message History: None.

Source Message Contents

Date: Thu, 03 Jun 2010 16:22:27 +0000
Subject: Novell eDirectory


http://www.novell.com/support/viewContent.do?externalId=3426981

DS\NDSD:
- Security vulnerability - NDSD cores when passed a bad verb.  (ZDI-CAN-477)  (Bug 571244)

DHOST:
- Security Vulnerability - eDirectory buffer overflow  (CVE-2009-4653) (Bug 588883)

HTTPSTK:
- Security Vulnerability - eDirectory DHOST Predictable Session Cookie  (Bug 586854)

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC