VYPR
Unrated severityNVD Advisory· Published Oct 24, 2006· Updated Jun 16, 2026

CVE-2006-5478

CVE-2006-5478

Description

Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail before 3.52e FTF2, allow remote attackers to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedirectURL function; or vectors related to a username containing a . (dot) character in the (2) SMTP, (3) POP, (4) IMAP, (5) HTTP, or (6) Networked Messaging Application Protocol (NMAP) Netmail services.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • Novell/Edirectory11 versions
    cpe:2.3:a:novell:edirectory:8.0:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:novell:edirectory:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.5.12a:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.5.27:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.7.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:novell:edirectory:8.7.3.8_presp9:*:*:*:*:*:*:*
    • (no CPE)range: <=8.7.3.8 (8.x); <8.8.1 FTF1 (8.8.x)
  • Novell/Netmailllm-fuzzy
    Range: <3.52e FTF2

Patches

Vulnerability mechanics

References

17

News mentions

0

No linked articles in our index yet.