CVE-2005-3269

Опубликовано: 20 окт. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2003q4:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2004q2:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2005q1:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*

cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*

cpe:2.3:a:sun:one_administration_server:5.2:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:4.16:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:4.16:sp1:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.0:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.0:sp1:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.0_sp2:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:*:x86:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:sp1:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:sp2:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:sp3:*:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:sp3:x86:*:*:*:*:*

cpe:2.3:a:sun:one_directory_server:5.1:sp4:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04526

Низкий

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-wcrv-7ccm-jh9r

github

почти 4 года назад