CVE-2009-3862

Novell eDirectory <8.7.3.10-8.8.5 - DoS

Title source: llm

Description

The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search request with a NULL BaseDN value.

References (4)

Scores

EPSS 0.0067
EPSS Percentile 71.0%

Classification

CWE
CWE-287
Status draft

Affected Products (18)

novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
novell/edirectory
... and 3 more

Timeline

Published Nov 04, 2009
Tracked Since Feb 18, 2026