Novell eDirectory < 8.8.2 FTF2 / 8.7.3 SP10b Multiple Remote Overflows

Critical Nessus Plugin ID 33397


The remote directory service is affected by multiple buffer overflows.


The remote host is running eDirectory, a directory service software from Novell.

The installed version of eDirectory is affected by an integer overflow issue in ds.dlm / dhost.exe (bound by default to TCP port 524) as well as a heap-based buffer overflow that can be triggered by passing NULL search parameters to the LDAP service. An unauthenticated attacker may be able to leverage either issue to execute code on the remote host with SYSTEM privileges.


Upgrade to eDirectory 8.8.2 FTF2 / 8.7.3 SP10b or later.

See Also

Plugin Details

Severity: Critical

ID: 33397

File Name: edirectory_ds_integer_overflow.nasl

Version: $Revision: 1.18 $

Type: remote

Published: 2008/07/07

Modified: 2016/11/11

Dependencies: 25701

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:novell:edirectory

Required KB Items: Services/ldap

Exploit Available: false

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2008-1809, CVE-2008-3159

BID: 30085, 30175

OSVDB: 46708, 46928

CWE: 119, 189