10
CVE-2009-0895
- EPSS 26.23%
- Veröffentlicht 03.12.2009 17:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Novell ≫ Edirectory Version8.7.3
Novell ≫ Edirectory Version8.7.3 Updatesp10
Novell ≫ Edirectory Version8.7.3 Updatesp10 Editionftf1
Novell ≫ Edirectory Version8.7.3 Updatesp10_b
Novell ≫ Edirectory Version8.7.3 Updatesp3
Novell ≫ Edirectory Version8.7.3 Updatesp3 Editionftf1
Novell ≫ Edirectory Version8.7.3 Updatesp4
Novell ≫ Edirectory Version8.7.3 Updatesp4 Editionftf1
Novell ≫ Edirectory Version8.7.3 Updatesp5
Novell ≫ Edirectory Version8.7.3 Updatesp5 Editionftf1
Novell ≫ Edirectory Version8.7.3.8
Novell ≫ Edirectory Version8.7.3.9
Novell ≫ Edirectory Version8.7.3.10
Novell ≫ Edirectory Version8.8
Novell ≫ Edirectory Version8.8 Updatesp1
Novell ≫ Edirectory Version8.8 Updatesp2
Novell ≫ Edirectory Version8.8 Updatesp3 Editionftf3
Novell ≫ Edirectory Version8.8 Updatesp4
Novell ≫ Edirectory Version8.8.1
Novell ≫ Edirectory Version8.8.2
Novell ≫ Edirectory Version8.8.2 Editionftf1
Novell ≫ Edirectory Version8.8.5 Editionftf1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 26.23% | 0.958 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|