7.8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.074 Low
EPSS
Percentile
94.0%
Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
CPE | Name | Operator | Version |
---|---|---|---|
sun:iplanet_directory_server | sun iplanet directory server | le | 4.1.4 |
ftp://patches.sgi.com/support/free/security/advisories/20011102-01-I
ciac.llnl.gov/ciac/bulletins/l-116.shtml
www.cert.org/advisories/CA-2001-18.html
www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
www.kb.cert.org/vuls/id/276944
www.kb.cert.org/vuls/id/JPLA-4WESMM
www.securityfocus.com/bid/3039
exchange.xforce.ibmcloud.com/vulnerabilities/6898