Environment
Novell eDirectory 8.8.2 and prior for Windows 2003
Novell eDirectory 8.8.2 and prior for Windows 2000
Novell eDirectory 8.7.3.9 and prior for Windows 2000
Novell eDirectory 8.7.3.9 and prior for Windows 2003
Situation
Connection: HTTP headers can be used to cause dhost.exe to consume
100% of a CPU. Multiple requests submitted can comsume time
on all CPUs.
Resolution
For eDirectory 8.7.3.X:
Upgrade to eDirectory 8.7.3 sp10
For eDirectory 8.8.X:
Upgrade to eDirectory 8.8.2
Upgrade to eDirectory 8.7.3 sp10
For eDirectory 8.8.X:
Upgrade to eDirectory 8.8.2
Status
Reported to EngineeringSecurity Alert
Additional Information
This vulnerability was reported by Nicholas Gregorie
CVE-2008-0927
CVE-2008-0927