Novell Home

My Favorites

Close

Please to see your favorites.

Security vulnerability: evtFilteredMonitorEventsRequest Heap Overflow

This document (3496175) is provided subject to the disclaimer at the end of this document.

Environment


Novell eDirectory 8.8.1 for All Platforms
Novell eDirectory 8.8 for All Platforms
Novell eDirectory 8.7.3.8 and prior for All Platforms

Situation

Successful exploitation of this vulnerability could allow an attacker to crash the server or execute arbitrary code. No credentials are required. Typically this daemon runs with administrator privileges.

Resolution

This vulnerability is resolved by applying eDirectory 8.8.1 ftf or newer version for eDirectory 8.8.X

edir881ftf_1.exe for NetWare/Windows and edir881ftf_1.tgz for Linux/Solaris/AIX is available at http://dl.netiq.com

This vulnerability is resolved by applying eDirectory 8.7.3 sp9 or newer version for eDirectory 8.7.3.X

http://support.novell.com/servlet/filedownload/uns/ftf/edir8739.tgz for AIX/Solaris/Linux
http://support.novell.com/servlet/filedownload/uns/ftf/edir8739.exe for NetWare/Windows

Status

Reported to Engineering
Security Alert

Additional Information

This vulnerability was reported by iDefense  http://www.idefense.com
iDefense #IDEF1747
CVE‑2006‑4509

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:3496175
  • Creation Date:11-JAN-08
  • Modified Date:27-JAN-14
    • NetIQeDirectory

Did this document solve your problem? Provide Feedback