Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

eDirectory < 8.8.5 ftf1/8.7.3.10 ftf2 NULL Base DN DoS

Medium

Synopsis

The remote host is vulnerable to a denial of service attack.

Description

The remote host is running eDirectory, a directory service from Novell. The installed version is earlier than 8.8 SP5 ftf1, or 8.7.3.10 ftf2. Such versions are affected by a denial of service vulnerability when handling search requests with an undefined BaseDN.

Solution

Upgrade to eDirectory 8.8 SP5 ftf1 / 8.7.3.10 ftf2 or later.