CVE-2008-1809

EUVD-2008-1809
Heap-based buffer overflow in Novell eDirectory 8.7.3 before 8.7.3.10b, and 8.8 before 8.8.2 FTF2, allows remote attackers to execute arbitrary code via an LDAP search request containing "NULL search parameters."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
novelledirectory
8.7.3
novelledirectory
8.8
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=724
http://secunia.com/advisories/31036
http://www.novell.com/support/viewContent.do?externalId=3843876
http://www.securityfocus.com/bid/30175
http://www.securitytracker.com/id?1020470
http://www.vupen.com/english/advisories/2008/2062/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43716
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=724
http://secunia.com/advisories/31036
http://www.novell.com/support/viewContent.do?externalId=3843876
http://www.securityfocus.com/bid/30175
http://www.securitytracker.com/id?1020470
http://www.vupen.com/english/advisories/2008/2062/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/43716