FKIE_CVE-2008-4478

Vulnerability from fkie_nvd - Published: 2008-10-14 22:36 - Updated: 2025-04-09 00:30
Severity ?
Summary
Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted (1) Content-Length header in a SOAP request or (2) Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer overflow.
References
cve@mitre.orghttp://secunia.com/advisories/32111
cve@mitre.orghttp://securityreason.com/securityalert/4406
cve@mitre.orghttp://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.htmlPatch
cve@mitre.orghttp://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.htmlPatch
cve@mitre.orghttp://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=7000087&sliceId=1&docTypeID=DT_TID_1_1&dialogID=78066829&stateId=0%200%2078062953Vendor Advisory
cve@mitre.orghttp://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=7001184&sliceId=1&docTypeID=DT_TID_1_1&dialogID=78066829&stateId=0%200%2078062953Vendor Advisory
cve@mitre.orghttp://www.securityfocus.com/archive/1/497163/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/archive/1/497165/100/0/threaded
cve@mitre.orghttp://www.securitytracker.com/id?1020989
cve@mitre.orghttp://www.securitytracker.com/id?1020990
cve@mitre.orghttp://www.vupen.com/english/advisories/2008/2738
cve@mitre.orghttp://www.zerodayinitiative.com/advisories/ZDI-08-063
cve@mitre.orghttp://www.zerodayinitiative.com/advisories/ZDI-08-065
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/45628
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/32111
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4406
af854a3a-2127-422b-91ae-364da2661108http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=7000087&sliceId=1&docTypeID=DT_TID_1_1&dialogID=78066829&stateId=0%200%2078062953Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=7001184&sliceId=1&docTypeID=DT_TID_1_1&dialogID=78066829&stateId=0%200%2078062953Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/497163/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/497165/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1020989
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1020990
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/2738
af854a3a-2127-422b-91ae-364da2661108http://www.zerodayinitiative.com/advisories/ZDI-08-063
af854a3a-2127-422b-91ae-364da2661108http://www.zerodayinitiative.com/advisories/ZDI-08-065
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/45628
Impacted products
Vendor Product Version
novell edirectory *
novell edirectory 8.7
novell edirectory 8.7.1
novell edirectory 8.7.1
novell edirectory 8.7.3
novell edirectory 8.7.3.8
novell edirectory 8.7.3.8_presp9
novell edirectory 8.7.3.9
novell edirectory 8.7.3.9
novell edirectory 8.7.3.9
novell edirectory 8.7.3.9
novell edirectory 8.7.3.9
novell edirectory 8.8
novell edirectory 8.8
novell edirectory 8.8
novell edirectory 8.8
novell edirectory 8.8
novell edirectory 8.8.1
novell edirectory 8.8.1
novell edirectory 8.8.1
novell edirectory 8.8.1
novell edirectory 8.8.1
novell edirectory 8.8.2
novell edirectory 8.8.2
novell edirectory 8.8.2
novell edirectory 8.8.2
novell edirectory 8.8.2
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:novell:edirectory:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABCFB5DD-D24D-4C3B-9188-C264D9AC0B93",
              "versionEndIncluding": "8.7.3.10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "15F668C0-8420-4401-AB0F-479575596CF0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDDCC7B6-34CA-4551-9833-306B93E517BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.1:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "6D69C160-39F7-48B8-B9A3-CC86690453C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "029ADE6D-6761-4196-847C-A0EFB3A06341",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E8D4976-BAE9-4A83-9DF6-9436C54E8413",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.8_presp9:*:*:*:*:*:*:*",
              "matchCriteriaId": "D27AAA23-21E1-4C35-97FA-7F038E2C8923",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "A626A123-E33A-445F-93A2-8FA3B2E3E53A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:linux:*:*:*:*:*",
              "matchCriteriaId": "6658D417-B666-400A-89BD-C74A84E4EC9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:solaris:*:*:*:*:*",
              "matchCriteriaId": "A5286A48-E77F-4D5F-8B8C-D701B9DC1819",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:windows_2000:*:*:*:*:*",
              "matchCriteriaId": "A18AD730-2782-4BC3-8B2E-D35D29EBC699",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.7.3.9:*:windows_2003:*:*:*:*:*",
              "matchCriteriaId": "36699D76-090F-4ED3-9C02-A09EB68F5CB6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7548D05-AD2B-46C3-9036-366585FFCB48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:linux:*:*:*:*:*",
              "matchCriteriaId": "9775274E-21A5-466E-B792-54F53ECCD8F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:solaris:*:*:*:*:*",
              "matchCriteriaId": "1CE0CDA6-DFF5-45F7-A641-180AED4F074D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:windows_2000:*:*:*:*:*",
              "matchCriteriaId": "B490E624-9A8E-4AD2-9B6F-BFDA431CD77D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8:*:windows_2003:*:*:*:*:*",
              "matchCriteriaId": "4747583B-125F-423F-863F-5CBC4CB46C9B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C13882AD-D700-4B95-9BB2-B3E0D104B227",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:linux:*:*:*:*:*",
              "matchCriteriaId": "F2AD4208-DD3E-427E-ADF8-5C59C59EDC15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:solaris:*:*:*:*:*",
              "matchCriteriaId": "BEE923F3-28AB-4C29-A920-F363F415CBE2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:windows_2000:*:*:*:*:*",
              "matchCriteriaId": "F4DB1610-FDB3-432C-8AD7-C667DCAA29D3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.1:*:windows_2003:*:*:*:*:*",
              "matchCriteriaId": "30ABEC83-326A-4888-BFC7-3A40BC2E2CAD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8FDCB14-9380-42C3-A6EE-3E6AEA3F52F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:linux:*:*:*:*:*",
              "matchCriteriaId": "762D694C-7942-4265-BF99-1DE9F3BC9128",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:solaris:*:*:*:*:*",
              "matchCriteriaId": "20851E26-511C-41B2-A3BF-4E4A083A73F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:windows_2000:*:*:*:*:*",
              "matchCriteriaId": "57A9A26E-0FB6-4766-9C7E-CB82551BC9C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:edirectory:8.8.2:*:windows_2003:*:*:*:*:*",
              "matchCriteriaId": "7CD4DD41-AD88-4AB2-BAC2-2B59AECA16BE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple integer overflows in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.73 before 8.7.3.10 ftf1, allow remote attackers to execute arbitrary code via a crafted (1) Content-Length header in a SOAP request or (2) Netware Core Protocol opcode 0x0F message, which triggers a heap-based buffer overflow."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples desbordamientos de entero en dhost.exe en Novell eDirectory v8.8 anterior a v8.8.3, y v8.73 anterior a v8.7.3.10 ftf1, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de (1) una cabecera \"Content-Length\" manipulada en una petici\u00f3n SOAP o (2) mediante un mensaje Netware Core Protocol opcode 0x0F, que lanza un desbordamiento de b\u00fafer basado en mont\u00edculo."
    }
  ],
  "id": "CVE-2008-4478",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2008-10-14T22:36:53.587",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/32111"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/4406"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7000087\u0026sliceId=1\u0026docTypeID=DT_TID_1_1\u0026dialogID=78066829\u0026stateId=0%200%2078062953"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7001184\u0026sliceId=1\u0026docTypeID=DT_TID_1_1\u0026dialogID=78066829\u0026stateId=0%200%2078062953"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/497163/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/497165/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1020989"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1020990"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2738"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-063"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-065"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45628"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/32111"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/4406"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7000087\u0026sliceId=1\u0026docTypeID=DT_TID_1_1\u0026dialogID=78066829\u0026stateId=0%200%2078062953"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7001184\u0026sliceId=1\u0026docTypeID=DT_TID_1_1\u0026dialogID=78066829\u0026stateId=0%200%2078062953"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/497163/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/497165/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1020989"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1020990"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2738"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-063"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.zerodayinitiative.com/advisories/ZDI-08-065"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45628"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-189"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.