Vulnerabilities > Novell > Edirectory > 8.7.3.10
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-03-28 | CVE-2008-0926 | Improper Authentication vulnerability in Novell Edirectory The SOAP interface to the eMBox module in Novell eDirectory 8.7.3.9 and earlier, and 8.8.x before 8.8.2, relies on client-side authentication, which allows remote attackers to bypass authentication via requests for /SOAP URIs, and cause a denial of service (daemon shutdown) or read arbitrary files. | 7.5 |
2006-10-24 | CVE-2006-4177 | Remote Heap Overflow vulnerability in Novell eDirectory NCP Packet Processing Heap-based buffer overflow in the NCP engine in Novell eDirectory before 8.8.1 FTF1 allows remote attackers to execute arbitrary code via a crafted NCP over IP packet that causes NCP to read more data than intended. | 7.5 |