NetIQ eDirectory Novell NCP实现栈缓冲区溢出漏洞
NetIQ eDirectory Novell NCP实现栈缓冲区溢出漏洞
发布日期:2012-12-24
更新日期:2012-12-27
受影响系统:
Novell eDirectory 8.8
描述:
--------------------------------------------------------------------------------
CVE(CAN) ID: CVE-2012-0432
NetIQ eDirectory是一个LDAP目录。
NetIQ eDirectory内存在安全漏洞,远程用户可通过发送特制的数据在NCJP实现时触发栈溢出,利用此漏洞在目标系统上以目标服务权限执行任意代码。
<*来源:vendor
链接:http://securitytracker.com/id/1027918
http://www.novell.com/support/kb/doc.php?id=3426981
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Novell
------
Novell已经为此发布了一个安全公告(3426981)以及相应补丁:
3426981:History of Issues Resolved in eDirectory 8.8.x
链接:http://www.novell.com/support/kb/doc.php?id=3426981
补丁下载:
http://www.novell.com/support/viewContent.do?externalId=7005397
http://www.novell.com/support/viewContent.do?externalId=7010166
评论暂时关闭