cpe:/a:novell:edirectory:8.7.3 cpe:/a:novell:edirectory:8.7.3.8 cpe:/a:novell:edirectory:8.7.3.8_presp9 cpe:/a:novell:edirectory:8.7.3.9 cpe:/a:novell:edirectory:8.7.3.9::linux cpe:/a:novell:edirectory:8.7.3.9::solaris cpe:/a:novell:edirectory:8.7.3.9::windows_2000 cpe:/a:novell:edirectory:8.7.3.9::windows_2003 cpe:/a:novell:edirectory:8.7.3.10 cpe:/a:novell:edirectory:8.8 cpe:/a:novell:edirectory:8.8::linux cpe:/a:novell:edirectory:8.8::solaris cpe:/a:novell:edirectory:8.8::windows_2000 cpe:/a:novell:edirectory:8.8::windows_2003 cpe:/a:novell:edirectory:8.8.1 cpe:/a:novell:edirectory:8.8.1::linux cpe:/a:novell:edirectory:8.8.1::solaris cpe:/a:novell:edirectory:8.8.1::windows_2000 cpe:/a:novell:edirectory:8.8.1::windows_2003 cpe:/a:novell:edirectory:8.8.2 cpe:/a:novell:edirectory:8.8.2::linux cpe:/a:novell:edirectory:8.8.2::solaris cpe:/a:novell:edirectory:8.8.2::windows_2000 cpe:/a:novell:edirectory:8.8.2::windows_2003 CVE-2008-4479 2008-10-14T18:36:58.570-04:00 2011-03-07T22:12:31.393-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-10-15T14:41:00.000-04:00 SECTRACK 1020989 BUGTRAQ 20081008 ZDI-08-064: Novell eDirectory dhost.exe Accept Language Header Heap Overflow Vulnerability SECUNIA 32111 SREASON 4405 VUPEN ADV-2008-2738 CONFIRM http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037180.html CONFIRM http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5037181.html CONFIRM http://www.novell.com/support/php/search.do?cmd=displayKC&docType=kc&externalId=7000086&sliceId=1&docTypeID=DT_TID_1_1&dialogID=78066829&stateId=0%200%2078062953 MISC http://www.zerodayinitiative.com/advisories/ZDI-08-064 Heap-based buffer overflow in dhost.exe in Novell eDirectory 8.8 before 8.8.3, and 8.7.3 before 8.7.3.10 ftf1, allows remote attackers to execute arbitrary code via a SOAP request with a long Accept-Language header.