lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Fri, 30 May 2008 11:42:43 +0530
From: M P Sairam <msairam@...oto.com>
To: Full disclosure <full-disclosure@...ts.grok.org.uk>
Subject: Request for Information on Exploit 'Novell
 eDirectory evtFilteredMonitorEventsRequest() function Buffer Overflow
 vulnerability'

Hi,
      I'm developing a tool for testing the effectiveness of IPS/IDS 
devices against various exploits. I could not find any working Poc for 
this particular vulnerability.

      Please help me out with any information about any working exploit 
for this vulnerability or Poc.

Details:

Exploit: Novell eDirectory evtFilteredMonitorEventsRequest() function 
Buffer Overflow vulnerability

Product: Novell eDirectory  <= 8.8.1

Description:
The evtFilteredMonitorEventsRequest function in the LDAP service in 
Novell eDirectory before 8.8.1 FTF1 allows remote attackers to execute 
arbitrary code via a crafted request containing a value that is larger 
than the number of objects transmitted, which triggers an invalid free 
of unallocated memory.

iDefence Labs: 
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=428
CAN ID: 2006-4509 
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4509>, 2006-4510 
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4510>
BID: 20663 <http://www.securityfocus.com/bid/20663>

Thanks in advance,
Sairam



********************************************************************************
This email message (including any attachments) is for the sole use of the intended recipient(s) 
and may contain confidential, proprietary and privileged information. Any unauthorized review, 
use, disclosure or distribution is prohibited. If you are not the intended recipient, 
please immediately notify the sender by reply email and destroy all copies of the original message. 
Thank you.
 
Intoto Inc. 


Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ