Novell eDirectory DHost HTTPSTK buffer overflow

Added: 11/23/2009
BID: 37042

Background

Novell eDirectory is a directory server which implements the LDAP protocol. eDirectory for Windows, Linux, and UNIX includes the DHost program, which runs under eDirectory and provides the functionality of the NetWare operating system.

Problem

A buffer overflow vulnerability in DHost allows remote attackers to execute arbitrary commands by sending a POST request to the HTTPSTK form with a long, specially crafted sadminpwd or verifypwd parameter.

Resolution

Apply an update when one becomes available.

References

http://www.securityfocus.com/archive/1/507926

Limitations

Exploit works on Novell eDirectory 8.8 SP5. The 'WWW::Mechanize' and 'IO::Socket::SSL' PERL modules are required.

This exploit requires a valid eDirectory login and password.

Platforms

Windows
Linux

Back to exploit index