CVE-2006-2496 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Edirectory

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

15.7%

top 5.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Edirectory Novell Imonitor

Timeline

PublishedMay 20

Latest updateMay 1

Description

Buffer overflow in iMonitor 2.4 in Novell eDirectory 8.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unknown attack vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDnovell/imonitor2.4

▶NVDnovell/edirectory8.8

Patches

Patch: secunia.com ↗Patch: securitytracker.com ↗Patch: support.novell.com ↗

🔴Vulnerability Details

GHSA

GHSA-v89m-jf85-w853: Buffer overflow in iMonitor 2↗2022-05-01

▶

CVEList

CVE-2006-2496: Buffer overflow in iMonitor 2↗2006-05-20

▶