CVE-2008-5038

Use-after-free vulnerability in the NetWare Core Protocol (NCP) feature in Novell eDirectory 8.7.3 SP10 before 8.7.3 SP10 FTF1 and 8.8 SP2 for Windows allows remote attackers to cause a denial of service and possibly execute arbitrary code via a sequence of "Get NCP Extension Information By Name" requests that cause one thread to operate on memory after it has been freed in another thread, which triggers memory corruption, aka Novell Bug 373852.

CVSS v3 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=748	Broken Link
http://osvdb.org/48206	Broken Link
http://secunia.com/advisories/32395	Broken Link Vendor Advisory
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html	Broken Link Patch Vendor Advisory
http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html	Broken Link Patch
http://www.novell.com/support/viewContent.do?externalId=3426981	Broken Link
http://www.securityfocus.com/bid/31956	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1021117	Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2008/2937	Broken Link Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/46138	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:novell:edirectory::::::::
	cpe:2.3:a:novell:edirectory:8.7.3:sp1::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp2::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp3::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp4::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp5::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp6::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp7::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp8::::windows::*
	cpe:2.3:a:novell:edirectory:8.7.3:sp9::::windows::*
	cpe:2.3:a:novell:edirectory:8.8:-::::windows::*

History

02 Feb 2024, 15:49

Type	Values Removed	Values Added
References	~~() http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=748 -~~	() http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=748 - Broken Link
References	~~() http://osvdb.org/48206 -~~	() http://osvdb.org/48206 - Broken Link
References	~~() http://secunia.com/advisories/32395 - Vendor Advisory~~	() http://secunia.com/advisories/32395 - Broken Link, Vendor Advisory
References	~~() http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html - Patch, Vendor Advisory~~	() http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html - Broken Link, Patch, Vendor Advisory
References	~~() http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html - Patch~~	() http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html - Broken Link, Patch
References	~~() http://www.novell.com/support/viewContent.do?externalId=3426981 -~~	() http://www.novell.com/support/viewContent.do?externalId=3426981 - Broken Link
References	~~() http://www.securityfocus.com/bid/31956 -~~	() http://www.securityfocus.com/bid/31956 - Broken Link, Third Party Advisory, VDB Entry
References	~~() http://www.securitytracker.com/id?1021117 -~~	() http://www.securitytracker.com/id?1021117 - Broken Link, Third Party Advisory, VDB Entry
References	~~() http://www.vupen.com/english/advisories/2008/2937 - Vendor Advisory~~	() http://www.vupen.com/english/advisories/2008/2937 - Broken Link, Vendor Advisory
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/46138 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/46138 - Third Party Advisory, VDB Entry
CVSS	v2 : ~~10.0~~ v3 : ~~unknown~~	v2 : 10.0 v3 : 9.8
CWE	~~CWE-399~~	CWE-416
CPE	cpe:2.3:a:novell:edirectory:8.7.1:::::::* cpe:2.3:a:novell:edirectory:8.7.3:sp1:windows:::::* cpe:2.3:a:novell:edirectory:8.7.3:sp8:windows:::::* cpe:2.3:a:novell:edirectory:8.7.3:::::::* cpe:2.3:a:novell:edirectory::sp9:windows::::: cpe:2.3:a:novell:edirectory:8.5.27:::::::* cpe:2.3:a:novell:edirectory:8.7:::::::* cpe:2.3:a:novell:edirectory:8.7.3:sp4:windows:::::* cpe:2.3:a:novell:edirectory:8.6.2:::::::* cpe:2.3:a:novell:edirectory:8.0:::::::* cpe:2.3:a:novell:edirectory:8.7.3:sp2:windows:::::* cpe:2.3:a:novell:edirectory:8.8:sp2:windows:::::* cpe:2.3:a:novell:edirectory:8.7.3:sp6:windows:::::* cpe:2.3:a:novell:edirectory:8.5.12a:::::::* cpe:2.3:a:novell:edirectory:8.7.3:sp3:windows:::::* cpe:2.3:a:novell:edirectory:8.7.3:sp7:windows:::::* cpe:2.3:a:novell:edirectory:8.5:::::::* cpe:2.3:a:novell:edirectory:8.7.1:sp1:::::: cpe:2.3:a:novell:edirectory:8.7.3:sp5:windows:::::*	cpe:2.3:a:novell:edirectory:8.7.3:sp9::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp7::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp1::::windows::* cpe:2.3:a:novell:edirectory:8.8:-::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp4::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp8::::windows::* cpe:2.3:a:novell:edirectory:::::::: cpe:2.3:a:novell:edirectory:8.7.3:sp5::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp3::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp2::::windows::* cpe:2.3:a:novell:edirectory:8.7.3:sp6::::windows::*

Information

Published : 2008-11-12 21:09

Updated : 2024-02-02 15:49

NVD link : CVE-2008-5038

Mitre link : CVE-2008-5038

CVE.ORG link : CVE-2008-5038

JSON object : View

Products Affected

novell

edirectory

CWE

CWE-416

Use After Free

9.8 /10