Описание
The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations.
Ссылки
- Broken LinkVendor Advisory
- Broken LinkVendor Advisory
- Broken Link
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Third Party AdvisoryVDB Entry
- Broken LinkVendor Advisory
- Broken LinkVendor Advisory
- Broken Link
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*
cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01768
Низкий
7.8 High
CVSS2
Дефекты
CWE-824
Связанные уязвимости
github
почти 4 года назад
The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations.
EPSS
Процентиль: 82%
0.01768
Низкий
7.8 High
CVSS2
Дефекты
CWE-824