Novell eDirectory eMBox Utility Unauthorized Access

High Nessus Plugin ID 31850


The remote host has an application installed that may allow unauthorized access to the system.


The remote host is running eDirectory, a popular directory service software from Novell.

A vulnerability in the eMBox utility included with the software, may allow an unauthenticated attacker to access local files or cause a denial of service condition.


Upgrade to eDirectory 8.8.2 or rename 'embox.nlm'.

See Also

Plugin Details

Severity: High

ID: 31850

File Name: edirectory_embox_unauth_access.nasl

Version: $Revision: 1.16 $

Type: local

Agent: windows

Family: Windows

Published: 2008/04/11

Modified: 2016/10/10

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 8.8

Temporal Score: 7.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:N/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:novell:edirectory

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

CVE: CVE-2008-0926

BID: 28441

OSVDB: 43690

Secunia: 29527

CWE: 287