Vulnerabilites related to sun - one_directory_server
Vulnerability from fkie_nvd
Published
2007-05-02 22:19
Modified
2025-04-09 00:30
Severity ?
Summary
Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | one_directory_server | 5.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*",
"matchCriteriaId": "BE6D70A5-A2AE-4142-86C7-A3D15C155801",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*",
"matchCriteriaId": "5F64D5A0-9BED-497F-9C90-B4F404A699A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*",
"matchCriteriaId": "1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*",
"matchCriteriaId": "92E44A06-2535-4841-8191-9B27B03A42CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings."
},
{
"lang": "es",
"value": "Vulnerabilidad no especificada en LDAP Software Development Kit (SDK) para C, como el usado en Sun Java System Directory Server 5.2 hasta el Patch 4 y Sun ONE Directory Server 5.1, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) mediante ciertas codificaciones BER."
}
],
"id": "CVE-2007-2466",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2007-05-02T22:19:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://osvdb.org/35743"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/25091"
},
{
"source": "cve@mitre.org",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/23743"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securitytracker.com/id?1017991"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2007/1610"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34002"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/35743"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/25091"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/23743"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securitytracker.com/id?1017991"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2007/1610"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34002"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2005-10-20 23:02
Modified
2025-04-03 01:03
Severity ?
Summary
Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | java_system_directory_proxy_server | 5.2 | |
| sun | java_system_directory_proxy_server | 5.2 | |
| sun | java_system_directory_proxy_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | one_administration_server | 5.2 | |
| sun | one_directory_server | 4.16 | |
| sun | one_directory_server | 4.16 | |
| sun | one_directory_server | 5.0 | |
| sun | one_directory_server | 5.0 | |
| sun | one_directory_server | 5.0_sp2 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2003q4:*:*:*:*:*:*",
"matchCriteriaId": "F8A63139-DAC4-4748-8A20-18FE72C6E93A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2004q2:*:*:*:*:*:*",
"matchCriteriaId": "DCF5317C-051B-4906-8438-DEA07EE4D757",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_proxy_server:5.2:2005q1:*:*:*:*:*:*",
"matchCriteriaId": "2FCAD34C-19EB-429A-A41D-0DC1F0999154",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*",
"matchCriteriaId": "BE6D70A5-A2AE-4142-86C7-A3D15C155801",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*",
"matchCriteriaId": "5F64D5A0-9BED-497F-9C90-B4F404A699A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*",
"matchCriteriaId": "1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_administration_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A099D284-A1C4-474D-ABF9-84DEC377D18B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "9F3F2846-7A02-42A4-AE19-FCE28706FA9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:4.16:sp1:*:*:*:*:*:*",
"matchCriteriaId": "DA43DD25-AACA-4F63-A8E5-0CAA58C27BBA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "80BB5338-F78C-4140-8F60-8BB0F9ADDF7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0:sp1:*:*:*:*:*:*",
"matchCriteriaId": "F94220C9-8EFC-4491-A530-033EF32AEAEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0_sp2:*:*:*:*:*:*:*",
"matchCriteriaId": "A548BEA7-2592-49F0-BEE8-B077AFF7F8F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:x86:*:*:*:*:*",
"matchCriteriaId": "67D5A7FC-7F6B-461D-AD96-3A42036A91D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp1:*:*:*:*:*:*",
"matchCriteriaId": "3F12275A-86ED-4CB9-9849-BA3D3BF21A0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp2:*:*:*:*:*:*",
"matchCriteriaId": "30214F09-1DD9-4A04-AE86-F5FCC006BD92",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp3:*:*:*:*:*:*",
"matchCriteriaId": "8589402C-4E79-4615-A00B-F83B0508F6AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp3:x86:*:*:*:*:*",
"matchCriteriaId": "7ED2C81F-7B2E-4FC5-A521-BE156F00B5CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp4:*:*:*:*:*:*",
"matchCriteriaId": "4E773228-F889-48A4-98DC-44BB5E746CC4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges."
}
],
"id": "CVE-2005-3269",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": true,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2005-10-20T23:02:00.000",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=112862037500012\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=113815459026080\u0026w=2"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/17092"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/18590"
},
{
"source": "secalert@redhat.com",
"url": "http://securityreason.com/securityalert/367"
},
{
"source": "secalert@redhat.com",
"url": "http://securityreason.com/securityalert/51"
},
{
"source": "secalert@redhat.com",
"url": "http://securitytracker.com/id?1015014"
},
{
"source": "secalert@redhat.com",
"url": "http://securitytracker.com/id?1015536"
},
{
"source": "secalert@redhat.com",
"url": "http://securitytracker.com/id?1015537"
},
{
"source": "secalert@redhat.com",
"url": "http://securitytracker.com/id?1015538"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1"
},
{
"source": "secalert@redhat.com",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102002-1"
},
{
"source": "secalert@redhat.com",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-228419-1"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/15013"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/16345"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2005/1988"
},
{
"source": "secalert@redhat.com",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24311"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=112862037500012\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=113815459026080\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/17092"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/18590"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securityreason.com/securityalert/367"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securityreason.com/securityalert/51"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securitytracker.com/id?1015014"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securitytracker.com/id?1015536"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securitytracker.com/id?1015537"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securitytracker.com/id?1015538"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102002-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-228419-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/15013"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/16345"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2005/1988"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24311"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2007-06-14 23:30
Modified
2025-04-09 00:30
Severity ?
Summary
Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 5.2 | |
| sun | java_system_directory_server | 6.0 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*",
"matchCriteriaId": "BE6D70A5-A2AE-4142-86C7-A3D15C155801",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*",
"matchCriteriaId": "5F64D5A0-9BED-497F-9C90-B4F404A699A5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*",
"matchCriteriaId": "1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*",
"matchCriteriaId": "92E44A06-2535-4841-8191-9B27B03A42CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*",
"matchCriteriaId": "A2AAC3E9-6B8A-48DC-A135-715F94F078F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E73C928E-92A5-4B61-BA90-56EABD6E7A73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
},
{
"lang": "es",
"value": "Vulnerabilidad no especificada en Sun ONE/Java System Directory Server (slapd) 6.0, y 5.x anterior a 5.2 Parche 5, permite a atacantes remotos en determinar la existencia de atributos de una entrada a trav\u00e9s de vectores no especificados."
}
],
"id": "CVE-2007-3224",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2007-06-14T23:30:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://osvdb.org/37247"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/25666"
},
{
"source": "cve@mitre.org",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/24467"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id?1018254"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2007/2189"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/37247"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/25666"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://www.securityfocus.com/bid/24467"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1018254"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2007/2189"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2007-03-26 23:19
Modified
2025-04-09 00:30
Severity ?
Summary
The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | java_system_directory_server | 5.2 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "E73C928E-92A5-4B61-BA90-56EABD6E7A73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations."
},
{
"lang": "es",
"value": "El servidor LDAP (ns-slapd) de Sun Java System Directory Server 5.2 Patch4 y anteriores y ONE Directory Server 5.1 y 5.2 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) mediante peticiones mal formadas, probablemente peticiones BER mal formadas, las cuales disparan una liberaci\u00f3n de posiciones de memoria sin inicializar."
}
],
"id": "CVE-2006-4175",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2007-03-26T23:19:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Vendor Advisory"
],
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/24634"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.osvdb.org/33524"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/23117"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id?1017814"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.vupen.com/english/advisories/2007/1090"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33189"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Vendor Advisory"
],
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/24634"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.osvdb.org/33524"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/23117"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id?1017814"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.vupen.com/english/advisories/2007/1090"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33189"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-824"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2003-08-27 04:00
Modified
2025-04-03 01:03
Severity ?
Summary
Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | iplanet_directory_server | 5.0 | |
| sun | iplanet_directory_server | 5.1 | |
| sun | iplanet_directory_server | 5.1 | |
| sun | iplanet_directory_server | 5.1 | |
| sun | one_directory_server | 5.0 | |
| sun | one_directory_server | 5.0 | |
| sun | one_directory_server | 5.0_sp2 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 | |
| sun | one_directory_server | 5.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:iplanet_directory_server:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "421A383F-2F22-4125-A8FB-26C7501F2A16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:iplanet_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "02EAC61C-1922-46FD-87C3-7D645EB8EF59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:iplanet_directory_server:5.1:sp1:*:*:*:*:*:*",
"matchCriteriaId": "CE061C17-BE95-44B4-883C-90A5CA31DF9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:iplanet_directory_server:5.1:sp2:*:*:*:*:*:*",
"matchCriteriaId": "EC95D047-23CA-4C54-9328-C3068E1D7FA2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "80BB5338-F78C-4140-8F60-8BB0F9ADDF7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0:sp1:*:*:*:*:*:*",
"matchCriteriaId": "F94220C9-8EFC-4491-A530-033EF32AEAEC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0_sp2:*:*:*:*:*:*:*",
"matchCriteriaId": "A548BEA7-2592-49F0-BEE8-B077AFF7F8F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp1:*:*:*:*:*:*",
"matchCriteriaId": "3F12275A-86ED-4CB9-9849-BA3D3BF21A0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:sp2:*:*:*:*:*:*",
"matchCriteriaId": "30214F09-1DD9-4A04-AE86-F5FCC006BD92",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via \"..%2f\" (partially encoded dot dot) sequences."
},
{
"lang": "es",
"value": "Vulnerabilidad de atravesamiento de directorio en ViewLog de iPlanet Adminstration Server 5.1 (tambi\u00e9n llamado Sun ONE) permite a atacantes remotos leer ficheros arbitariosr mediente secuencias \"..%2f\" (punto punto parcialmente codificado)."
}
],
"id": "CVE-2003-0676",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2003-08-27T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2003-12-31 05:00
Modified
2025-04-03 01:03
Severity ?
Summary
Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt).
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1 | Patch, Vendor Advisory | |
| cve@mitre.org | http://www.kb.cert.org/vuls/id/195644 | Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/195644 | Third Party Advisory, US Government Resource |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| sun | one_directory_server | 4.16 | |
| sun | one_directory_server | 5.0 | |
| sun | one_directory_server | 5.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sun:one_directory_server:4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "9F3F2846-7A02-42A4-AE19-FCE28706FA9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.0:*:*:*:*:*:*:*",
"matchCriteriaId": "80BB5338-F78C-4140-8F60-8BB0F9ADDF7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt)."
}
],
"id": "CVE-2003-1125",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2003-12-31T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/195644"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/195644"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2005-3269 (GCVE-0-2005-3269)
Vulnerability from cvelistv5
Published
2005-10-20 04:00
Modified
2024-08-07 23:01
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:01:59.084Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1015538",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1015538"
},
{
"name": "20051006 High Risk Vulnerability in Sun Directory Server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=112862037500012\u0026w=2"
},
{
"name": "15013",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/15013"
},
{
"name": "1015536",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1015536"
},
{
"name": "18590",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/18590"
},
{
"name": "367",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/367"
},
{
"name": "16345",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/16345"
},
{
"name": "102002",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102002-1"
},
{
"name": "51",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/51"
},
{
"name": "redhat-directory-admin-bo(24311)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24311"
},
{
"name": "17092",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/17092"
},
{
"name": "1015014",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1015014"
},
{
"name": "ADV-2005-1988",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2005/1988"
},
{
"name": "20060122 High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=113815459026080\u0026w=2"
},
{
"name": "1015537",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1015537"
},
{
"name": "228419",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-228419-1"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-10-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "1015538",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1015538"
},
{
"name": "20051006 High Risk Vulnerability in Sun Directory Server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=112862037500012\u0026w=2"
},
{
"name": "15013",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/15013"
},
{
"name": "1015536",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1015536"
},
{
"name": "18590",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/18590"
},
{
"name": "367",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/367"
},
{
"name": "16345",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/16345"
},
{
"name": "102002",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102002-1"
},
{
"name": "51",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/51"
},
{
"name": "redhat-directory-admin-bo(24311)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24311"
},
{
"name": "17092",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/17092"
},
{
"name": "1015014",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1015014"
},
{
"name": "ADV-2005-1988",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2005/1988"
},
{
"name": "20060122 High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=113815459026080\u0026w=2"
},
{
"name": "1015537",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1015537"
},
{
"name": "228419",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-228419-1"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2005-3269",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1015538",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1015538"
},
{
"name": "20051006 High Risk Vulnerability in Sun Directory Server",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=112862037500012\u0026w=2"
},
{
"name": "15013",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/15013"
},
{
"name": "1015536",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1015536"
},
{
"name": "18590",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/18590"
},
{
"name": "367",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/367"
},
{
"name": "16345",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/16345"
},
{
"name": "102002",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102002-1"
},
{
"name": "51",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/51"
},
{
"name": "redhat-directory-admin-bo(24311)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24311"
},
{
"name": "17092",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/17092"
},
{
"name": "1015014",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1015014"
},
{
"name": "ADV-2005-1988",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2005/1988"
},
{
"name": "20060122 High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=113815459026080\u0026w=2"
},
{
"name": "1015537",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1015537"
},
{
"name": "228419",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-228419-1"
},
{
"name": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1",
"refsource": "CONFIRM",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2005-3269",
"datePublished": "2005-10-20T04:00:00",
"dateReserved": "2005-10-20T00:00:00",
"dateUpdated": "2024-08-07T23:01:59.084Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-2466 (GCVE-0-2007-2466)
Vulnerability from cvelistv5
Published
2007-05-02 22:00
Modified
2024-08-07 13:42
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings.
References
| ► | URL | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T13:42:32.686Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1017991",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1017991"
},
{
"name": "25091",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/25091"
},
{
"name": "ADV-2007-1610",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/1610"
},
{
"name": "35743",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/35743"
},
{
"name": "23743",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/23743"
},
{
"name": "102895",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1"
},
{
"name": "sun-java-ber-dos(34002)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34002"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-05-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1017991",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1017991"
},
{
"name": "25091",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/25091"
},
{
"name": "ADV-2007-1610",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/1610"
},
{
"name": "35743",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/35743"
},
{
"name": "23743",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/23743"
},
{
"name": "102895",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1"
},
{
"name": "sun-java-ber-dos(34002)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34002"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-2466",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1017991",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1017991"
},
{
"name": "25091",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/25091"
},
{
"name": "ADV-2007-1610",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/1610"
},
{
"name": "35743",
"refsource": "OSVDB",
"url": "http://osvdb.org/35743"
},
{
"name": "23743",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/23743"
},
{
"name": "102895",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1"
},
{
"name": "sun-java-ber-dos(34002)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34002"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-2466",
"datePublished": "2007-05-02T22:00:00",
"dateReserved": "2007-05-02T00:00:00",
"dateUpdated": "2024-08-07T13:42:32.686Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2003-0676 (GCVE-0-2003-0676)
Vulnerability from cvelistv5
Published
2003-08-14 04:00
Modified
2024-08-08 02:05
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.
References
| ► | URL | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:05:12.199Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20030808 Directory Traversal in Sun iPlanet Administration Server 5.1",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2003-08-08T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via \"..%2f\" (partially encoded dot dot) sequences."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-17T13:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20030808 Directory Traversal in Sun iPlanet Administration Server 5.1",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2003-0676",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via \"..%2f\" (partially encoded dot dot) sequences."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20030808 Directory Traversal in Sun iPlanet Administration Server 5.1",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2003-0676",
"datePublished": "2003-08-14T04:00:00",
"dateReserved": "2003-08-08T00:00:00",
"dateUpdated": "2024-08-08T02:05:12.199Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2007-3224 (GCVE-0-2007-3224)
Vulnerability from cvelistv5
Published
2007-06-14 23:00
Modified
2024-08-07 14:05
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.
References
| ► | URL | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T14:05:29.329Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "sun-java-unspecified-information-disclosure(34858)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
},
{
"name": "ADV-2007-2189",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/2189"
},
{
"name": "102876",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
},
{
"name": "1018254",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1018254"
},
{
"name": "37247",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/37247"
},
{
"name": "25666",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/25666"
},
{
"name": "24467",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/24467"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-06-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-28T12:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "sun-java-unspecified-information-disclosure(34858)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
},
{
"name": "ADV-2007-2189",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/2189"
},
{
"name": "102876",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
},
{
"name": "1018254",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1018254"
},
{
"name": "37247",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/37247"
},
{
"name": "25666",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/25666"
},
{
"name": "24467",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/24467"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-3224",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "sun-java-unspecified-information-disclosure(34858)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
},
{
"name": "ADV-2007-2189",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/2189"
},
{
"name": "102876",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
},
{
"name": "1018254",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1018254"
},
{
"name": "37247",
"refsource": "OSVDB",
"url": "http://osvdb.org/37247"
},
{
"name": "25666",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/25666"
},
{
"name": "24467",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/24467"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2007-3224",
"datePublished": "2007-06-14T23:00:00",
"dateReserved": "2007-06-14T00:00:00",
"dateUpdated": "2024-08-07T14:05:29.329Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2003-1125 (GCVE-0-2003-1125)
Vulnerability from cvelistv5
Published
2005-03-12 05:00
Modified
2024-09-17 04:24
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt).
References
| ► | URL | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:19:44.704Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "52102",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1"
},
{
"name": "VU#195644",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/195644"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt)."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2005-03-12T05:00:00Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "52102",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1"
},
{
"name": "VU#195644",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/195644"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2003-1125",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, 5.0, and 5.1 allows LDAP clients to cause a denial of service (service halt)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "52102",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-52102-1"
},
{
"name": "VU#195644",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/195644"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2003-1125",
"datePublished": "2005-03-12T05:00:00Z",
"dateReserved": "2005-03-12T00:00:00Z",
"dateUpdated": "2024-09-17T04:24:21.495Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-4175 (GCVE-0-2006-4175)
Vulnerability from cvelistv5
Published
2007-03-26 23:00
Modified
2024-08-07 18:57
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations.
References
| ► | URL | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T18:57:46.319Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "sun-java-cleanupcode-dos(33189)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33189"
},
{
"name": "ADV-2007-1090",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/1090"
},
{
"name": "33524",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/33524"
},
{
"name": "24634",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/24634"
},
{
"name": "1017814",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1017814"
},
{
"name": "20070323 Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability",
"tags": [
"third-party-advisory",
"x_refsource_IDEFENSE",
"x_transferred"
],
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491"
},
{
"name": "102853",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT",
"x_transferred"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1"
},
{
"name": "23117",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/23117"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-03-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "sun-java-cleanupcode-dos(33189)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33189"
},
{
"name": "ADV-2007-1090",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/1090"
},
{
"name": "33524",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/33524"
},
{
"name": "24634",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/24634"
},
{
"name": "1017814",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1017814"
},
{
"name": "20070323 Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability",
"tags": [
"third-party-advisory",
"x_refsource_IDEFENSE"
],
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491"
},
{
"name": "102853",
"tags": [
"vendor-advisory",
"x_refsource_SUNALERT"
],
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1"
},
{
"name": "23117",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/23117"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-4175",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "sun-java-cleanupcode-dos(33189)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33189"
},
{
"name": "ADV-2007-1090",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2007/1090"
},
{
"name": "33524",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/33524"
},
{
"name": "24634",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/24634"
},
{
"name": "1017814",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1017814"
},
{
"name": "20070323 Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability",
"refsource": "IDEFENSE",
"url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491"
},
{
"name": "102853",
"refsource": "SUNALERT",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1"
},
{
"name": "23117",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/23117"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-4175",
"datePublished": "2007-03-26T23:00:00",
"dateReserved": "2006-08-16T00:00:00",
"dateUpdated": "2024-08-07T18:57:46.319Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}