BID:23685

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

Info

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

Bugtraq ID:	23685
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2006-4520
Remote:	Yes
Local:	No
Published:	Apr 26 2007 12:00AM
Updated:	Apr 30 2007 05:00PM
Credit:	The discoverer of this issue wishes to remain anonymous.
Vulnerable:	Novell eDirectory 8.8.1

Not Vulnerable:

Discussion

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

Novell eDirectory is prone to a remote denial-of-service vulnerability because it fails to handle certain malformed request packets.

An attacker can exploit this issue to crash the affected server process, denying service to legitimate users.

Novell eDirectory 8.8, 8.8.1, 8.7.3.8 and prior versions are vulnerable.

Exploit / POC

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

An attacker can exploit this issue using readily available networking tools.

Solution / Fix

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

Solution:
The vendor has released a fix for this issue. Please see the references for more information.

References

Novell EDirectory NCP Fragment Length Denial Of Service Vulnerability

References:

eDirectory Product Homepage (Novell)
Novell eDirectory NCP Fragment Denial of Service Vulnerability (iDefense Labs)
Novell eDirectory NCP Fragment Denial of Service Vulnerability (iDefense Labs)
Security Vulnerability: NCP Fragment Denial of Service (Novell)