10

CVE-2008-3159

Integer overflow in ds.dlm, as used by dhost.exe, in Novell eDirectory 8.7.3.10 before 8.7.3 SP10b and 8.8 before 8.8.2 ftf2 allows remote attackers to execute arbitrary code via unspecified vectors that trigger a stack-based buffer overflow, related to "flawed arithmetic."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NovellEdirectory Version8.7.3
NovellEdirectory Version8.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 8.67% 0.944
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/30938
Vendor Advisory
http://securitytracker.com/id?1020431
http://www.novell.com/support/search.do?cmd=displayKC&sliceId=SAL_Public&externalId=3694858
http://www.securityfocus.com/bid/30085
http://www.vupen.com/english/advisories/2008/1999
http://www.zerodayinitiative.com/advisories/ZDI-08-041/
https://exchange.xforce.ibmcloud.com/vulnerabilities/43589