Vulnerability Details CVE-2009-2456
The DS\NDSD component in Novell eDirectory 8.8 before SP5 allows remote attackers to cause a denial of service (ndsd core dump) via an LDAP request containing multiple . (dot) wildcard characters in the Relative Distinguished Name (RDN).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 84.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/55848
- http://secunia.com/advisories/34160
- http://www.novell.com/support/viewContent.do?externalId=3426981
- http://www.securityfocus.com/bid/35666
- http://www.vupen.com/english/advisories/2009/1883
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51705
- http://osvdb.org/55848
- http://secunia.com/advisories/34160
- http://www.novell.com/support/viewContent.do?externalId=3426981
- http://www.securityfocus.com/bid/35666
- http://www.vupen.com/english/advisories/2009/1883
- https://exchange.xforce.ibmcloud.com/vulnerabilities/51705
Products affected by CVE-2009-2456
-
cpe:2.3:a:novell:edirectory:8.8