security vulnerability: evtFilteredMonitorEventsRequest Invalid Free

Document ID:3936018
Creation Date:13-Mar-2007
Modified Date:27-Jan-2014
- Micro Focus Products:
  eDirectory

Environment

Novell eDirectory 8.8.1 for All Platforms
Novell eDirectory 8.8 for All Platforms
Novell eDirectory 8.7.3.8 and earlier for All Platforms

Situation

Successful exploitation of this vulnerability could allow an attacker to crash the server as the stack would be damaged by the invalid free.

Resolution

To resolve this vulnerability apply eDirectory 8.8.1 ftf or newer version for eDirectory 8.8.X

To resolve this vulnerability apply eDirectory 8.7.3 sp9 or newer version for eDirectory 8.7.3.X

Patches are available at https://dl.netiq.com

Status

Reported to Engineering
Security Alert

Additional Information

This vulnerability was reported by iDefense http://www.idefense.com

iDefense #IDEF1805
CVE‑2006‑4510