Requesting "DOS Device in Path Name" Denial of Service

  • 10097766
  • NOVL102201
  • 23-May-2005
  • 01-Jul-2005

Archived Content: This information is no longer maintained and is provided 'as is' for your convenience.

Fact

Novell eDirectory 8.7.3 for Windows 2000

Novell eDirectory 8.7.3 for Windows NT

Symptom

Requesting "DOS Device in Path Name" Denial of Service

Attack causes error in dhost.exe application

Attack causes nds service to stop until manually restarted.

Fix

To resolve this vulnerability:  Apply IR 6 for eDirectory 8.7.3 and  the httpdstk update - httpstkupd.exe available on the Novell Support Site 

Note

Reported by Danish Computer Incident Response Team - CAN-2005-1729