Check CVE Id
Check CWE Id
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1.
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage.
Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation.
Addresses denial of service attack to eDirectory versions prior to 9.1.
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.
The certificate upload in NetIQ eDirectory PKI plugin before 8.8.8 Patch 10 Hotfix 1 could be abused to upload JSP code which could be used by authenticated attackers to execute JSP applets on the iManager server.
Novell iManager 2.7 before SP7 Patch 9, NetIQ iManager 3.x before 18.104.22.168, Novell eDirectory 8.8.x before 8.8 SP8 Patch 9 Hotfix 2, and NetIQ eDirectory 9.x before 9.0.2 Hotfix 2 (22.214.171.124) use the deprecated MD5 hashing algorithm in a communications certificate.
Stack-based buffer overflow in the Novell NCP implementation in NetIQ eDirectory 8.8.7.x before 126.96.36.199 allows remote attackers to have an unspecified impact via unknown vectors.
Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 188.8.131.52 and 8.8.7.x before 184.108.40.206 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors.
dhost in NetIQ eDirectory 8.8.6.x before 220.127.116.11 and 8.8.7.x before 18.104.22.168 on Windows allows remote authenticated users to cause a denial of service (daemon crash) via crafted characters in an HTTP request.
Back to Top