iDefense Security Advisory 03.23.07: Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability

Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error Vulnerability iDefense Security Advisory 03.23.07 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 23, 2007 I. BACKGROUND Sun Java System Directory Server is an LDAP server distributed by Sun with multiple...

Solaris 8 (sparc) : 115614-28

Sun JavaTM System Directory Server 5.2 patch 6 : Solaris sparc. Date this patch was last updated by Sun : Sep/21/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...

CVE-2006-2513

Sun Java System Directory Server 5.2 contains a flaw in the installation process that writes incorrect user data to a file created during installation, enabling privilege elevation for remote attackers or local users. The connected Nessus entry (Sun Server Console Authentication Bypass) notes a d...

Design/Logic Flaw

LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service memory allocation error via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite...

CVE-2006-0647

LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service memory allocation error via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite...

CVE-2006-0647

Summary: CVE-2006-0647 affects Sun Java System Directory Server 5.2 (LDAP server) on Linux and possibly other platforms. The vulnerability is triggered by a crafted LDAP subtree search request, leading to a denial of service via a memory allocation error. The issue arises from improper handling o...

CVE-2006-0647

LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service memory allocation error via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite...

CVE-2005-3269

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for 1 Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, 2 Red Hat Directory Server and 3 Certificate Server before 7.1 SP1, 4 Sun ONE Directory Server 5.1 SP4 and earlier, and 5 Sun ONE Administration Serv...

CVE-2005-3269

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for 1 Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, 2 Red Hat Directory Server and 3 Certificate Server before 7.1 SP1, 4 Sun ONE Directory Server 5.1 SP4 and earlier, and 5 Sun ONE Administration Serv...

[SA14960] Sun Java System Directory Server LDAP Request Buffer Overflow

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Sun Java System Directory Server LDAP Request Buffer...