This script is Copyright (C) 2009-2011 Tenable Network Security, Inc.
The remote directory service is affected by multiple vulnerabilities.
The remote host is running eDirectory, a directory service software
from Novell. The installed version of this software is affected by
multiple issues :
- Malformed bind LDAP packet causes eDir crash.
- The use of multiple wildcards in RDNs can trigger a
remote denial of service vulnerability. (Bug 458504)
- An HTTP request containing a specially crafted
'Accept-Language' header can trigger a stack-based
buffer overflow. This issue affects the iMonitor
service. (Bugs 484007 and 446342)
See also :
Upgrade to eDirectory 8.8 SP5 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true