10

CVE-2006-4510

The evtFilteredMonitorEventsRequest function in the LDAP service in Novell eDirectory before 8.8.1 FTF1 allows remote attackers to execute arbitrary code via a crafted request containing a value that is larger than the number of objects transmitted, which triggers an invalid free of unallocated memory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NovellEdirectory Version8.8
NovellEdirectory Version8.8.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.48% 0.929
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/22506
Patch
Vendor Advisory
http://securitytracker.com/id?1017104
http://www.securityfocus.com/bid/20663
Patch
http://www.vupen.com/english/advisories/2006/4142
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=428
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/29752