VYPR
Unrated severityNVD Advisory· Published Apr 30, 2007· Updated Jun 16, 2026

CVE-2006-4520

CVE-2006-4520

Description

ncp in Novell eDirectory before 8.7.3 SP9, and 8.8.x before 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote attackers to cause a denial of service (daemon crash) when the heap is written to a log file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Novell/Edirectory4 versions
    cpe:2.3:a:novell:edirectory:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:novell:edirectory:*:*:*:*:*:*:*:*range: <=8.7.3.8
    • cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*
    • (no CPE)range: <8.7.3 SP9 or <8.8.1 FTF2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.