Lucene search

[email protected]CVE-2001-1307

HistoryMay 03, 2002 - 4:00 a.m.

CVE-2001-1307

2002-05-0304:00:00

[email protected]

web.nvd.nist.gov

buffer overflow

iplanet directory server

denial of service

remote attack

arbitrary code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.8%

JSON

Buffer overflows in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.

Affected configurations

NVD

Node

suniplanet_directory_serverRange≤4.1.4

CPENameOperatorVersion
sun:iplanet_directory_serversun iplanet directory serverle4.1.4

CPE	Name	Operator	Version
sun:iplanet_directory_server	sun iplanet directory server	le	4.1.4

References

ftp://patches.sgi.com/support/free/security/advisories/20011102-01-I

www.cert.org/advisories/CA-2001-18.html

www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/

www.kb.cert.org/vuls/id/276944

www.kb.cert.org/vuls/id/JPLA-4WESMM

www.securityfocus.com/bid/3038

exchange.xforce.ibmcloud.com/vulnerabilities/6893

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.028 Low

EPSS

Percentile

90.8%

JSON

Related for CVE-2001-1307

nvd1 cvelist1 cert1