|
[Japanese]
|
JVNDB-2004-000593
|
LDAP server update function vulnerable to buffer overflow
|
|
Some LDAP servers contain a buffer overflow vulnerability in the update processing.
|
|
Base Metrics:
7.8 (High)
[IPA Score]
- Access Vector: Network
- Access Complexity: Low
- Authentication: None
- Confidentiality Impact: None
- Integrity Impact: None
- Availability Impact: Complete
|
|
|
|
Sun Microsystems, Inc.
- Sun Java System Directory Server 5.2
- Sun Java System Directory Server 5.2 (5.2 RTM ZIP or 5.2 Patch2 ZIP)
- Sun ONE Directory Server 5.1
Netscape
- Netscape Directory Server Version 3.6
Hewlett-Packard Development Company, L.P
- HP-UX 11.00
- HP-UX 11.11
- HP-UX 11.23
Hitachi, Ltd
- Hitachi Directory Server Version 2
|
|
|
A remote attacker could cause a denial of service or execute arbitrary code with the privileges of the user running the LDAP server.
|
|
|
|
Hewlett-Packard Development Company, L.P
Red Hat, Inc.
Hitachi, Ltd
- Hitachi Software Vulnerability Information : HS05-001
|
|
|
|
- CVE-2004-1236
|
|
- JVN : JVN#1BF8D7AA
- National Vulnerability Database (NVD) : CVE-2004-1236
- US-CERT Vulnerability Note : VU#258905
- CIAC Bulletins : p-083
- Secunia Advisory : SA14960
- SecurityFocus : 12099
- ISS X-Force Database : 18676
|
|
[2007/04/21]
Web page published
|
