Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
BID:30085
Info
Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
| Bugtraq ID: | 30085 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2008-3159 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 02 2008 12:00AM |
| Updated: | May 07 2015 05:27PM |
| Credit: | Sebastian Apelt |
| Vulnerable: |
Novell eDirectory 8.7.3 Novell eDirectory 8.8 |
| Not Vulnerable: |
Novell eDirectory 8.8.2 ftf2 Novell eDirectory 8.7.3 SP10b |
Discussion
Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
Novell eDirectory is prone to a vulnerability in the 'ds.dlm' module. The software fails to adequately bounds-check user-supplied data, resulting in an integer-overflow condition.
An attacker can exploit this vulnerability to execute arbitrary code in the context of the eDirectory process. Failed exploit attempts will likely cause denial-of-service conditions.
This issue affects Novell eDirectory 8.7.3 and 8.8 for all platforms.
Novell eDirectory is prone to a vulnerability in the 'ds.dlm' module. The software fails to adequately bounds-check user-supplied data, resulting in an integer-overflow condition.
An attacker can exploit this vulnerability to execute arbitrary code in the context of the eDirectory process. Failed exploit attempts will likely cause denial-of-service conditions.
This issue affects Novell eDirectory 8.7.3 and 8.8 for all platforms.
Exploit / POC
Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
Solution:
The vendor has released a fix. Please see the references for more information.
Solution:
The vendor has released a fix. Please see the references for more information.
References
Novell eDirectory 'ds.dlm' Module Integer Overflow Vulnerability
References:
References:
- Novell 3694858: Security Vulnerability: Integer overflow stack corruption (Novell)
- Novell Downloads (Novell)
- ZDI-08-041: Novell eDirectory dhost Integer Overflow Code Execution Vulnerabilit ([email protected])
- ZDI-08-041 Novell eDirectory dhost Integer Overflow Code Execution Vulnerability (Zero Day Initiative)