CVE-2006-4521

N/A Unknown
Published: November 04, 2006 Modified: April 23, 2026
View on NVD

Description

The BerDecodeLoginDataRequest function in the libnmasldap.so NMAS module in Novell eDirectory 8.8 and 8.8.1 before the Security Services 2.0.3 patch does not properly increment a pointer when handling certain input, which allows remote attackers to cause a denial of service (invalid memory access) via a crafted login request.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=437
Source: cve@mitre.org
Patch Vendor Advisory
http://secunia.com/advisories/22660
Source: cve@mitre.org
Patch Vendor Advisory
http://securitytracker.com/id?1017140
Source: cve@mitre.org
Patch
http://www.securityfocus.com/bid/20842
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2006/4293
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/29963
Source: cve@mitre.org
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=437
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://secunia.com/advisories/22660
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://securitytracker.com/id?1017140
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
http://www.securityfocus.com/bid/20842
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2006/4293
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/29963
Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
3.4%
87th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

novell