Unrated severityNVD Advisory· Published Nov 4, 2009· Updated Apr 23, 2026
CVE-2009-3862
CVE-2009-3862
Description
The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a denial of service (application hang) via a search request with a NULL BaseDN value.
Affected products
18cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*+ 17 more
- cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3.9:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp2:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp3:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp4:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp5:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp6:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp7:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp8:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.7.3:sp9:windows:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:edirectory:8.8:sp4:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.novell.com/support/viewContent.donvdPatchVendor Advisory
- www.vupen.com/english/advisories/2009/3120nvdPatchVendor Advisory
- www.zerodayinitiative.com/advisories/ZDI-09-075/nvdPatch
- www.securityfocus.com/bid/36902nvd
News mentions
0No linked articles in our index yet.