Executive Summary

Summary
Title Sun Alert 275711 Security Vulnerability in the Sun Java System Directory Server May Allow Crafted LDAP Search Requests To Cause A Denial Of Service (DoS) Condition
Informations
Name SUN-275711 First vendor Publication 2010-01-20
Vendor Sun Last vendor Modification 2010-04-14
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Product: Sun Directory Server Enterprise Edition, Sun Java System Directory Server Enterprise Edition 6.3, Sun Java System Directory Server Enterprise Edition 6.2, Sun Java System Directory Server Enterprise Edition 6.1, Sun Java System Directory Server Enterprise Edition 6.0, Sun Java System Directory Server 5.2

A security vulnerability in the Sun Java System Directory Server(ns-slapd and slapd.exe) may allow a remote unprivileged user to crashthe Directory Server process via crafted LDAP search requests, therebyleading to a Denial of Service (DoS) condition.

State: Workaround
First released: 20-Jan-2010

Original Source

Url : http://blogs.sun.com/security/entry/sun_alert_275711_security_vulnerability

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 7

OpenVAS Exploits

Date Description
2010-02-26 Name : Sun Java System Directory Server LDAP Search Request Denial of Service Vulner...
File : nvt/sun_dir_server_37899.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
62745 Sun Directory Server slapd.exe Multiple Unspecified LDAP Search DoS

62744 Sun Directory Server ns-slapd Multiple Unspecified LDAP Search DoS

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2013-02-06 19:08:25
  • Multiple Updates