Vulnerability Details : CVE-2005-2551
Public exploit exists!
Buffer overflow in dhost.exe in iMonitor for Novell eDirectory 8.7.3 on Windows allows attackers to cause a denial of service (crash) and obtain access to files via unknown vectors.
Vulnerability category: OverflowDenial of service
Products affected by CVE-2005-2551
- cpe:2.3:a:novell:edirectory:8.7.3:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-2551
89.43%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2005-2551
-
eDirectory 8.7.3 iMonitor Remote Stack Buffer Overflow
Disclosure Date: 2005-08-11First seen: 2020-04-26exploit/windows/http/edirectory_imonitorThis module exploits a stack buffer overflow in eDirectory 8.7.3 iMonitor service. This vulnerability was discovered by Peter Winter-Smith of NGSSoftware. NOTE: repeated exploitation attempts may cause eDirectory to crash. It does not restart automatically
CVSS scores for CVE-2005-2551
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2005-2551
-
http://www.kb.cert.org/vuls/id/213165
US Government Resource
-
http://securitytracker.com/id?1014661
-
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2972038.htm
Patch
-
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098568.htm
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/14548
Novell eDirectory Server iMonitor Buffer Overflow Vulnerability
Jump to