QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-5478

Back to search

CVE-2006-5478

Published: Oct 24, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail before 3.52e FTF2, allow remote attackers to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedirectURL function; or vectors related to a username containing a . (dot) character in the (2) SMTP, (3) POP, (4) IMAP, (5) HTTP, or (6) Networked Messaging Application Protocol (NMAP) Netmail services.

VendorProductVersions

n/a

n/a

affected
n/a

References

20655
vdb-entry
x_refsource_BID
1017141
vdb-entry
x_refsource_SECTRACK
1017125
vdb-entry
x_refsource_SECTRACK
ADV-2006-4141
vdb-entry
x_refsource_VUPEN
20853
vdb-entry
x_refsource_BID
22519
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now