CVE-2009-4655

Novell eDirectory 8.8.5 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2009-4655. PoCs published by Metasploit, including Metasploit module auxiliary/admin/edirectory/edirectory_dhost_cookie.

AI-analyzed exploit summary This exploit predicts the next session cookie value issued by the DHOST web service of Novell eDirectory 8.8.5, allowing an attacker to hijack an administrator's session by specifying the predicted cookie value.

Description

The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotenovell

https://www.exploit-db.com/exploits/33767

View Code ZIP pw:eip

This exploit predicts the next session cookie value issued by the DHOST web service of Novell eDirectory 8.8.5, allowing an attacker to hijack an administrator's session by specifying the predicted cookie value.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Novell eDirectory 8.8.5

No auth needed

Prerequisites: Network access to the DHOST web service on port 8030 (or 8030 with SSL)

MITRE ATT&CK

T1550.004 - Web Session Cookie

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/edirectory/edirectory_dhost_cookie.rb

View Code ZIP pw:eip

This Metasploit module exploits a predictable session cookie vulnerability in Novell eDirectory 8.8.5 by analyzing cookie deltas to predict the next session cookie value, enabling session hijacking.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Novell eDirectory 8.8.5

No auth needed

Prerequisites: Network access to the target's DHOST service on port 8030

MITRE ATT&CK

T1557 - Adversary-in-the-Middle

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit x_refsource_misc

http://www.metasploit.com/modules/auxiliary/admin/edirectory/edirectory_dhost_cookie

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/60035

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/56613

Exploit x_refsource_misc

http://www.metasploit.com/redmine/projects/framework/repository/entry/modules/auxiliary/admin/edirectory/edirectory_dhost_cookie.rb

Scores

EPSS 0.6034

EPSS Percentile 98.3%

Details

CWE

CWE-310

Status published

Products (1)

novell/edirectory 8.8.5

Published Feb 26, 2010

Tracked Since Feb 18, 2026