Description
Stack-based buffer overflow in the eDirectory plugin in Novell iManager before 2.7.3 allows remote attackers to execute arbitrary code via vectors that trigger long arguments to an unspecified sub-application, related to importing and exporting from a schema.
Affected products
- Novell / imanager2.7.2
- Novell / imanager1.5 – 1.5
- Novell / imanager2.0 – 2.0
- Novell / imanager2.0.2 – 2.0.2
- Novell / imanager2.5 – 2.5
- Novell / imanager2.6.0 – 2.6.0
- Novell / imanager2.7.1 – 2.7.1
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/38030
- MISChttp://www.novell.com/support/viewContent.do?externalId=7004985&sliceId=1
- MISChttp://osvdb.org/61584
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/55468
- MISChttp://www.securityfocus.com/bid/37672
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2010/0074
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-001/