Summary
This host is running Novell eDirectory is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attackers to cause a vulnerable service to become unresponsive, leading to a denial of service condition.
Impact Level: Application.
Solution
Upgrade to Novell eDirectory 8.8.5.6 or 8.8.6.2
For updates refer to http://www.novell.com/products/edirectory/
Insight
This flaw is caused by an error in the 'NCP' implementation when processing malformed 'FileSetLock' requests sent to port 524.
Affected
Novell eDirectory 8.8.5 before 8.8.5.6 (8.8.5.SP6) Novell eDirectory 8.8.6 before 8.8.6.2 (8.8.6.SP2) on Linux.
References
Severity
Classification
-
CVE CVE-2010-4327 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Firefox XUL Parsing Denial of Service Vulnerability (Linux)
- Apple Safari Malformed URI Remote DoS Vulnerability (Win)
- Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
- ClamAV Recursion Level Handling Denial of Service Vulnerability (Windows)
- Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability (Windows)