CVE-2008-5092

CWE-119Buffer Overflow3 documents3 sources
Severity
10.0CRITICAL
EPSS
0.4%
top 39.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Edirectory
Timeline
PublishedNov 14
Latest updateMay 17

Description

Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 8.8 SP3 have unknown impact and attack vectors related to the (1) HTTP language header and (2) HTTP content-length header.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDnovell/edirectory8.8+16

🔴Vulnerability Details

2
GHSA
GHSA-rv4m-vmcf-vc52: Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 82022-05-17
CVEList
CVE-2008-5092: Heap-based buffer overflows in Novell eDirectory HTTP protocol stack (HTTPSTK) before 82008-11-14
CVE-2008-5092 (CRITICAL CVSS 10) | Heap-based buffer overflows in Nove | cvebase.io