TippingPoint | DVLabs | ZDI Public Disclosure: Novell

▼ 2013
- ► January (2)
  - (loading)
► 2012
- ► October (1)
  - (loading)
- ► July (1)
  - (loading)
- ► June (1)
  - (loading)
- ► May (1)
  - (loading)
- ► April (2)
  - (loading)
- ► March (1)
  - (loading)
- ► February (5)
  - (loading)
► 2011
- ► December (4)
  - (loading)
- ► November (1)
  - (loading)
- ► October (1)
  - (loading)
- ► September (1)
  - (loading)
- ► July (2)
  - (loading)
- ► June (1)
  - (loading)
- ► May (1)
  - (loading)
- ► April (3)
  - (loading)
- ► March (1)
  - (loading)
- ► February (12)
  - (loading)
- ► January (1)
  - (loading)
► 2010
- ► December (1)
  - (loading)
- ► November (1)
  - (loading)
- ► October (1)
  - (loading)
- ► September (4)
  - (loading)
- ► August (1)
  - (loading)
- ► July (1)
  - (loading)
- ► March (1)
  - (loading)
- ► February (2)
  - (loading)
► 2009
- ► October (1)
  - (loading)
- ► September (3)
  - (loading)
- ► July (1)
  - (loading)
- ► June (5)
  - (loading)
- ► May (1)
  - (loading)
- ► April (2)
  - (loading)
- ► March (9)
  - (loading)
- ► February (7)
  - (loading)
- ► January (5)
  - (loading)
► 2008
- ► December (2)
  - (loading)
- ► November (4)
  - (loading)
- ► October (7)
  - (loading)
- ► September (9)
  - (loading)
- ► August (16)
  - (loading)
- ► July (9)
  - (loading)
- ► June (11)
  - (loading)
- ► May (1)
  - (loading)
- ► April (4)
  - (loading)
- ► March (6)
  - (loading)
- ► February (4)
  - (loading)
► 2007
- ► December (1)
  - (loading)
- ► November (5)
  - (loading)
- ► October (4)
  - (loading)
- ► September (1)
  - (loading)
- ► August (2)
  - (loading)
- ► July (9)
  - (loading)
- ► June (4)
  - (loading)
- ► May (8)
  - (loading)

ZDI Public Disclosure: Novell

By Aaron Portnoy
Mon 07 Feb 2011 17:06pm
4228 Views
0 Comments
Link

These vulnerabilities are being published as per the ZDI disclosure changes announced in August of 2010.

ZDI-CAN-445

Title:
Novell eDirectory Malformed NCP Request Denial of Service Vulnerability

Advisory:
This vulnerability allows attackers to deny services on vulnerable installations of Novell eDirectory. Authentication is not required in order to trigger this vulnerability.

The flaw exists within Novell's eDirectory Server's NCP implementation. Novell's eDirectory Server binds to port 524 for processing NCP requests. When the application processes a malformed FileSetLock request, the service will become unresponsive resulting in an inability to authenticate to that server.

Mitigation:
As the affected process is bound to a TCP port, external exploitation of this vulnerability can be mitigated by ensuring no traffic can reach the machine on the specified port. This can be done at the network level with a firewall or other similar technology. The vendor has stated that the fix for this vulnerability will be included in eDirectory 8.8.6.2 and eDirectory 8.8.5.6.

Tags:

Published On: 2011-02-07 17:06:34

Comments post a comment

No comments.

Links To This Post

Clock Runs Out on TippingPoint Disclosure Deadline | EconoLan
linked on 2011-02-08 @ 08:33 Show Comment

Novell 1

Trackback

ZDI Public Disclosure: Novell

ZDI-CAN-445

Comments post a comment

Links To This Post

Published Advisories

Upcoming Advisories

Blog Entries