CVE-2010-4746

Опубликовано: 23 фев. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Multiple memory leaks in the normalization functionality in 389 Directory Server before 1.2.7.5 allow remote attackers to cause a denial of service (memory consumption) via "badly behaved applications," related to (1) Slapi_Attr mishandling in the DN normalization code and (2) pointer mishandling in the syntax normalization code, a different issue than CVE-2011-0019.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:fedoraproject:389_directory_server:*:alpha3:*:*:*:*:*:*

Версия до 1.2.7 (включая)

cpe:2.3:a:fedoraproject:389_directory_server:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.2:*:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.3:*:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:*:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc1:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc2:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc3:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc4:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:*:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a2:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a3:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a4:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc1:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc2:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc3:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc6:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc7:*:*:*:*:*:*

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6.1:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00474

Низкий

5 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

CVE-2010-4746

redhat

больше 14 лет назад

GHSA-23jq-44mr-vjqc

github

около 3 лет назад