Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail before 3.52e FTF2, allow remote attackers to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedirectURL function; or vectors related to a username containing a . (dot) character in the (2) SMTP, (3) POP, (4) IMAP, (5) HTTP, or (6) Networked Messaging Application Protocol (NMAP) Netmail services.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-10-24 20:07
Updated : 2024-02-04 17:13
NVD link : CVE-2006-5478
Mitre link : CVE-2006-5478
CVE.ORG link : CVE-2006-5478
JSON object : View
Products Affected
novell
- edirectory
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer