What is CVE-2008-0926?

CVE-2008-0926 is a vulnerability in N/a. Published 2008-03-28.

Is CVE-2008-0926 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-0926

The SOAP interface to the eMBox module in Novell eDirectory 8.7.3.9 and earlier, and 8.8.x before 8.8.2, relies on client-side authentication, which allows remote attackers to bypass authentication via requests for /SOAP URIs, and cause a…

EPSS: 0.723 (98.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

novell-edirectory-embox-unspecified(41426) (vdb-entry, x_refsource_XF)
secure-support.novell.com/KanisaPlatform/Publishing/876/3866911_f.SAL_Public.ht… (x_refsource_CONFIRM)
20080505 Novell eDirectory unauthenticated access to SOAP interface (mailing-list, x_refsource_BUGTRAQ)
1019691 (vdb-entry, x_refsource_SECTRACK)
28441 (vdb-entry, x_refsource_BID)
29527 (x_refsource_SECUNIA, third-party-advisory)
ADV-2008-0988 (vdb-entry, x_refsource_VUPEN)

Frequently asked questions

What is CVE-2008-0926?: CVE-2008-0926 is a vulnerability in N/a. Published 2008-03-28.
Is CVE-2008-0926 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.