VYPR
High severity7.5NVD Advisory· Published Mar 23, 2017· Updated Jun 17, 2026

CVE-2016-9167

CVE-2016-9167

Description

NDSD in Novell eDirectory before 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would otherwise be filtered by an ACL.

Affected products

2
  • Novell/Edirectory2 versions
    cpe:2.3:a:novell:edirectory:*:hotfix2:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:novell:edirectory:*:hotfix2:*:*:*:*:*:*range: <=9.0.1
    • (no CPE)range: <9.0.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.