Novell eDirectory Server Long URI iMonitor Buffer Overflow Vulnerability

Bugtraq ID:	18026
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	May 18 2006 12:00AM
Updated:	May 23 2006 03:18PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Novell iMonitor 2.4 Novell eDirectory 8.8
Not Vulnerable:

Novell eDirectory Server Long URI iMonitor Buffer Overflow Vulnerability

The Novell eDirectory Server iMonitor is prone to a buffer-overflow vulnerability. Successfully exploiting this issue could allow arbitrary code execution with administrative privileges.

iMonitor version 2.4, which is included with eDirectory version 8.8, is vulnerable to this issue; other versions may also be affected.

Novell eDirectory Server Long URI iMonitor Buffer Overflow Vulnerability

A Metasploit framework exploit module (edirectory_imonitor2.pm) is available.

• /data/vulnerabilities/exploits/edirectory_imonitor2.pm

Novell eDirectory Server Long URI iMonitor Buffer Overflow Vulnerability

Solution:
Novell has released an advisory, along with a fix to address this issue. Please see the referenced advisory for further information.


Novell iMonitor 2.4

• Novell edir88ptf_imon.tgz
  http://support.novell.com/servlet/filedownload/sec/pub/edir88ptf_imon. tgz

Novell eDirectory 8.8

• Novell edir88ptf_imon.tgz
  http://support.novell.com/servlet/filedownload/sec/pub/edir88ptf_imon. tgz

Novell eDirectory Server Long URI iMonitor Buffer Overflow Vulnerability

References:

• eDirectory 8.7.3.8 FTF1 for Linux\Unix - TID2973826 (last modified 11AUG2006) (Novell)
  
• eDirectory Product Homepage (Novell)
  
• ZDI-06-016 - Novell eDirectory 8.8 NDS Server Buffer Overflow Vulnerability (Zero Day Initiative)