CVE-2009-0895

Published Dec 3, 2009

Last updated 8 years ago

CVSS info 10.0

Overview

Description: Integer overflow in Novell eDirectory 8.7.3.x before 8.7.3.10 ftf2 and 8.8.x before 8.8.5.2 allows remote attackers to execute arbitrary code via an NDS Verb 0x1 request containing a large integer value that triggers a heap-based buffer overflow.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-189

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "029ADE6D-6761-4196-847C-A0EFB3A06341"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F8E26AA-2F13-4E02-967F-5675C402B969"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp10:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50A97C1A-2DCE-4F85-A177-1CEA84C943EE"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp10_b:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D793787E-2CFB-4822-85ED-0BB79D3FFF95"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A38C607-73EA-4785-97FC-3D6013DC2981"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp3:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D5BD6876-7210-4BEB-B7AA-D244135365D9"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05979B3C-5275-43F4-9B45-865D1E22297E"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp4:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "718BDE90-B390-4CE8-BDB9-9C6FBEFE14CD"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6675EC25-306B-45B1-92C4-9528FA54A215"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:sp5:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D98C9A0-47D5-4999-943C-3505C6FB6F97"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E8D4976-BAE9-4A83-9DF6-9436C54E8413"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A626A123-E33A-445F-93A2-8FA3B2E3E53A"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "896C7671-E300-4E6D-86A3-D0DAF4168CC2"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7548D05-AD2B-46C3-9036-366585FFCB48"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8:sp1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "03D34570-657E-48D5-B778-9510C3D0FF7C"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8:sp2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2EA7ED79-2E4E-4BE0-B167-31BB6311A506"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8:sp3:ftf3:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E263D9A0-CAC3-4009-9F5B-8EA7365B28AE"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8:sp4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A78EBF3A-4073-41D2-BD52-E598318D4996"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C13882AD-D700-4B95-9BB2-B3E0D104B227"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8FDCB14-9380-42C3-A6EE-3E6AEA3F52F2"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "029E2F2F-CFC0-4C35-956C-703264AF3E82"
          },
          {
            "criteria": "cpe:2.3:a:novell:edirectory:8.8.5:*:ftf1:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57A31BFD-F2AA-4FCD-A661-706B5CFE2CDC"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References