Vulnerability Note VU#213165
Novell eDirectory iMonitor vulnerable to buffer overflow
Novell eDirectory iMonitor contains a buffer overflow that can be remotely exploited to allow execution of arbitrary code or crash an affected system.
Novell eDirectory iMonitor is a service for monitoring servers in an eDirectory installation. A buffer overflow exists in Novell eDirectory version 8.7.3 iMonitor for Microsoft Windows 2000, 2003, and NT. A stack-based buffer within the iMonitor can be overwritten via a specially-crafted HTTP request. To exploit this vulnerability an attacker must have access to iMonitor which is installed on systems that are part of a Novell eDirectory tree.
Note that exploits for this vulnerability have been made available on public web sites.
A remote attacker with access to a system in a Novell eDirectory tree may be able to crash an affected system or execute arbitrary code with the privileges of the iMonitor service, typically SYSTEM on Microsoft Windows.
Apply a patch
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Novell||Affected||-||22 Aug 2005|
CVSS Metrics (Learn More)
This vulnerability was reported by Peter Winter-Smith of NGSSoftware Insight Security Research.
This document was written by Jeff Gennari.
- CVE IDs: CAN-2005-2551
- Date Public: 11 Aug 2005
- Date First Published: 15 Aug 2005
- Date Last Updated: 22 Aug 2005
- Severity Metric: 16.54
- Document Revision: 47
If you have feedback, comments, or additional information about this vulnerability, please send us email.