Page 4 of 19 results (0.009 seconds)

CVSS: 7.5EPSS: 2%CPEs: 5EXPL: 0

Unspecified vulnerability in the installation process in Sun Java System Directory Server 5.2 causes wrong user data to be written to a file created by the installation, which allows remote attackers or local users to gain privileges. • http://secunia.com/advisories/20144 http://securitytracker.com/id?1016112 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102345-1 http://www.securityfocus.com/bid/18018 http://www.vupen.com/english/advisories/2006/1832 https://exchange.xforce.ibmcloud.com/vulnerabilities/26477 •

CVSS: 5.0EPSS: 34%CPEs: 1EXPL: 2

LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite. • https://www.exploit-db.com/exploits/27171 http://lists.immunitysec.com/pipermail/dailydave/2006-February/002914.html http://lists.immunitysec.com/pipermail/dailydave/2006-February/002916.html http://secunia.com/advisories/18769 http://securitytracker.com/id?1015604 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102294-1 http://www.securityfocus.com/bid/16550 http://www.vupen.com/english/advisories/2006/0492 https://exchange.xforce.ibmcloud.com/vulnerabilities/24605 •

CVSS: 7.5EPSS: 1%CPEs: 20EXPL: 0

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges. • http://marc.info/?l=bugtraq&m=112862037500012&w=2 http://marc.info/?l=bugtraq&m=113815459026080&w=2 http://secunia.com/advisories/17092 http://secunia.com/advisories/18590 http://securityreason.com/securityalert/367 http://securityreason.com/securityalert/51 http://securitytracker.com/id?1015014 http://securitytracker.com/id?1015536 http://securitytracker.com/id? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 3%CPEs: 93EXPL: 0

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message. • http://marc.info/?l=bugtraq&m=109351293827731&w=2 http://www.securityfocus.com/bid/11015 http://xforce.iss.net/xforce/alerts/id/180 https://exchange.xforce.ibmcloud.com/vulnerabilities/16314 •