abeNd.org - [SA29639] Novell eDirectory Host Environment HTTP Request Processing Denial of Service

User Functions
Username: Password: Don't have an account yet? Sign up as a New User Lost your password?

What's New
STORIES No new stories COMMENTS last 2 days No new comments TRACKBACKS last 2 days No new trackback comments LINKS last 2 weeks No recent new links

Who's Online
Guest Users: 7

Live Novell Chat
Live Novell Chat

Topics
Home Contracting (2/0) FAQ (1/0) NetWare (44/0) Certification (26/0) NDS/eDir (17/0) Administration (77/0) GroupWise (62/0) Linux/Open Source (277/0) Resources (16/0) General News (649/0) Security (179/0)

Poll
Best Virtualization Platform? XEN VMWare M$ Virtual Centre Other (please comment to identify) Results 67 votes \| 0 comments

Poll
Now that OES2 is out, what is your deployment strategy? ASAP, it is not downloading fast enough! Wait a few months Wait for SP1 There is still a killer feature we need (if so denote in the comments) Not at all OES2? Is that the next version of OS/2? Results 111 votes \| 0 comments

Poll
Is 2008 finally the year Linux sees a bigger gain of marketshare on the desktop? Yes. OEMs like Dell, HP and Lenovo selling Linux PCs, and better ATI driver support were the last major barriers to widespread adoption No. Issues such as a lack of a unified package manager, lack of ISV support and lack of third party apps still need to be overcome. Results 83 votes \| 2 comments

Microsoft Security
Microsoft Security Bulletin Revisions Microsoft Security Bulletin Summary for April 2008

[SA29639] Novell eDirectory Host Environment HTTP Request Processing Denial of Service

Author:	kkbass
Dated:	Friday, April 04 2008 @ 09:52 AM EDT
Viewed:	84 times

SECUNIA ADVISORY ID:SA29639
VERIFY ADVISORY:http://secunia.com/advisories/29639/
CRITICAL:Less critical
IMPACT:DoS
WHERE:From local network

SOFTWARE:
Novell eDirectory 8.x
http://secunia.com/product/1120/

DESCRIPTION:
Mati Aharoni has discovered a vulnerability in Novell eDirectory,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerability is caused due to an error in the Novell eDirectory
Host Environment service (dhost.exe) when processing HTTP requests.
This can be exploited to e.g. cause the service to consume large
amounts of CPU resources and stop responding to other requests by
sending an overly long, specially crafted HTTP request to default
port 8028/TCP.

The vulnerability is confirmed in version 8.8.2. Other versions may
also be affected.

SOLUTION:
Restrict network access to the service.

PROVIDED AND/OR DISCOVERED BY:
Mati Aharoni

ORIGINAL ADVISORY:
http://www.offensive-security.com/0day/novel-edir.py.txt

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

What's Related
http://secunia.com/advi... http://secunia.com/prod... http://www.offensive-se... http://secunia.com/secu... http://secunia.com/abou... More by kkbass More from Security

Story Options
Mail Story to a Friend Printable Story Format

Trackback

Trackback URL for this entry: http://www.abend.org/trackback.php/20080404095249610

No trackback comments for this entry.

[SA29639] Novell eDirectory Host Environment HTTP Request Processing Denial of Service | 0 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Welcome to abeNd.org - Novell News for IT Professionals Tuesday, May 13 2008 @ 06:25 PM EDT

Trackback