Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT Security Bulletin ASB-2012.0169.2 A number of vulnerabilities have been identified in Novell eDirectory 18 January 2013 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: Novell eDirectory Operating System: SUSE Red Hat Enterprise Linux Server 5 Red Hat Enterprise Linux Server 6 VMWare ESX Server Solaris AIX Windows Server 2003 Windows Server 2008 Windows Server 2008 R2 Impact/Access: Root Compromise -- Remote/Unauthenticated Cross-site Scripting -- Remote with User Interaction Denial of Service -- Unknown/Unspecified Unauthorised Access -- Unknown/Unspecified Resolution: Patch/Upgrade CVE Names: CVE-2012-0432 CVE-2012-0430 CVE-2012-0429 CVE-2012-0428 Member content until: Friday, January 18 2013 Comment: The vendor patch should urgently be applied, as remote exploit code is publicly available. Revision History: January 18 2013: Code which can remotely exploit CVE-2012-0432 is publicly available December 4 2012: Initial Release OVERVIEW A number of vulnerabilities have been identified in Novell eDirectory prior to version 8.8 SP7 Patch 2. [1] IMPACT The vendor has provided the following details regarding these vulnerabilities: "- Security Vulnerability: eDirectory DoS dhost request with certains characters (Bug 772895) (CVE-2012-0429) - Security Vulnerability: eDirectory Authorization Mechanism Bypass (Bug 772898) (CVE-2012-0430) - Security Vulnerability: eDirectory Cross Site Scripting exploit (Bug 772899) (CVE-2012-0428) - Security Vulnerability: Novell NCP Pre-Auth Remote Stack-Based Buffer Overflow (Bug 785272) (CVE-2012-0432)" [1] David Klein has advised on the Full Disclosure mailing list that a remote root compromise is possible via CVE-2012-0432. [2] MITIGATION The vendor recommends updating to the latest version of Novell eDirectory to correct these issues. [1] REFERENCES [1] History of Issues Resolved in eDirectory 8.8.x http://www.novell.com/support/kb/doc.php?id=3426981 [2] Novell NCP Pre-Auth Remote Stack-Based Buffer Overflow. (CVE-2012-0432) http://seclists.org/fulldisclosure/2013/Jan/97 AusCERT has made every effort to ensure that the information contained in this document is accurate. However, the decision to use the information described is the responsibility of each user or organisation. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBUPi+R+4yVqjM2NGpAQLwKRAAojarfSKkr13kJSwVqfraPs/qWhZoTbzg RmzFYFnQdresCbAUMHyFDHNHrDvNCCh9xLVJTN/YJm9RVbKTDai9FVMk2VUmxCnw tKNHn+PZ9Wye7YyNfXrgcYILaQ6pCGOKnEIPf9W8EdpRAV4nvpQeoij86VPlKgnp VsDa19effG5Sh6pUlCcACaS0L5SAzpWdQwxe3IJXhSm7MZ32pPetBCuRL2aG/BlR 6grH6RX/ad8XY1ACdXSAo/ccM9Gcx7NW1FHCYkuHXYKQ0MzjCCbYSOBD9Uv/A54o wBeDuxg7SPQU/hmiDYp24Qcy3GZJzvUIZCL8q72w2Mm/K8cMVPfaEYp6m5Pa2rkr HDtkqAsxmIAkNYe5R8r8gpmS5DYNXOwsdiqk5o0AOBAw9ck5TPImPGASJi4F/csZ xQMHqli1jLUXzrTjPT+ICoYUSxyo7FPpBP6OTxzUnpbGtgweeMSl/G1dzsA4lH8K Pt43OowI04Juaex9q7keNVtR37NXtWVi0LDRsJGyo9CG9mL40LcaRnu5sGFGyCL+ u3OSqNkPQSNYp/rHxIXU7UIAbRmVJ1Ay8wyOpQJefXzh6Lp3/znsx2jpfya9l+AN U0HdkgB9CECmm9MtuL0KJyDRCxjceT1TMDmHMVcLRU8Ukaq6LAfCecyOZoXJPesS QHMupMzH/ig= =ZlrY -----END PGP SIGNATURE-----