Unrated severityNVD Advisory· Published Nov 4, 2009· Updated Jun 16, 2026
CVE-2009-3862
CVE-2009-3862
Description
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search request with a NULL BaseDN value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
19cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*+ 18 more
- cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp2:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp3:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp4:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp5:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp6:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp7:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp8:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp9:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp4:*:*:*:*:*:*
- (no CPE)range: < 8.7.3.10 ftf2, < 8.8.5 ftf1
Patches
Vulnerability mechanics
References
4- www.novell.com/support/viewContent.donvdPatchVendor Advisory
- www.vupen.com/english/advisories/2009/3120nvdPatchVendor Advisory
- www.zerodayinitiative.com/advisories/ZDI-09-075/nvdPatch
- www.securityfocus.com/bid/36902nvd
News mentions
0No linked articles in our index yet.