EUVD-2001-1294

Malware in sbrugna...

CVE-2001-1315

The CVE-2001-1315 issue affects Critical Path’s InJoin Directory Server and LiveContent Directory. The vulnerability arises in the LDAP handling code, specifically through malformed BER encodings used in the PROTOS LDAPv3 test suite, which can be exploited remotely to trigger a crash (DoS) and ma...

CVE-2001-1319

Microsoft Exchange 5.5 2000 allows remote attackers to cause a denial of service hang via exceptional BER encodings for the LDAP filter type field, as demonstrated by the PROTOS LDAPv3 test suite...

EUVD-2001-1295

Buffer overflows in Critical Path 1 InJoin Directory Server or 2 LiveContent Directory allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite...

CVE-2001-1312

The CVE-2001-1312 issue affects Lotus Domino R5 prior to version 5.0.7a, where LDAP handling code contains format string vulnerabilities. Exploitation could cause remote denial of service and, potentially, arbitrary code execution, as demonstrated by the PROTOS LDAPv3 test suite. The CERT advisor...

CVE-2001-1308

CVE-2001-1308 involves format-string vulnerabilities in the iPlanet Directory Server, version 4.1.4 and earlier, in the LDAP handling code. The flaws allow remote attackers to cause a denial of service (crash) and potentially execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite...

CVE-2001-1306

The CVE-2001-1306 issue affects iPlanet Directory Server 4.1.4 and earlier (LDAP). The vulnerability allows a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via invalid BER length fields, as demonstrated by the PROTOS LDAPv3 test suite. Remediation (if...

CVE-2001-1311

CVE-2001-1311 refers to buffer overflows in Lotus Domino R5 pre-5.0.7a that allow a remote attacker to cause a denial of service and potentially execute arbitrary code, demonstrated by the PROTOS LDAPv3 test suite. The vulnerability affects Domino R5.0.7 and earlier versions, with remediation doc...

CVE-2001-1316

The CVE-2001-1316 issue concerns Teamware Office Enterprise Directory’s LDAP server, where buffer overflow in LDAP handling code (triggered by malformed LDAP requests) can cause remote denial-of-service and may allow arbitrary code execution, as demonstrated by the PROTOS LDAPv3 test suite. Docum...

CVE-2001-1309

CVE-2001-1309 concerns IBM SecureWay Directory/3.2.1 with buffer overflow vulnerabilities in LDAP processing. The CERT/IBM-disclosed issues indicate remote attackers could crash affected servers (DoS) and potentially execute arbitrary code, as demonstrated by PROTOS LDAPv3 test suites. Documented...

EUVD-2001-1299

Vulnerabilities in Qualcomm Eudora WorldMail Server may allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite...

CVE-2001-1317

The connected CERT CERT Advisory CA-2001-18 documents multiple vulnerabilities in Teamware Office LDAP server that may allow remote denial-of-service and possibly arbitrary code execution, triggered by malformed/invalid BER-encoded LDAP data (as demonstrated by PROTOS LDAPv3 tests). Affected prod...

CVE-2001-1314

The CVE-2001-1314 issue affects Critical Path components InJoin Directory Server and LiveContent Directory. The root cause is a buffer overflow in the LDAP handling code, demonstrated by PROTOS LDAPv3 tests. Consequences documented include remote denial of service (crash) and potential arbitrary ...

CVE-2001-1321

Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite...