Vulnerabilities > CVE-2005-1729 - Denial-Of-Service vulnerability in Novell Edirectory 8.7.3

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

novell

NVD

Published: 2005-06-12

Updated: 2008-09-05

Summary

Novell eDirectory 8.7.3 allows remote attackers to cause a denial of service (application crash) via a URL containing an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1.

Vulnerable Configurations

Part	Description	Count
Application	Novell Novell Edirectory 8.7.3	1

References

http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034536.html
http://secunia.com/advisories/15676
http://securitytracker.com/id?1014177
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10097766.htm
http://www.cirt.dk/advisories/cirt-33-advisory.pdf