3 results (0.004 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. • http://www.cert.org/advisories/CA-2001-18.html http://www.ciac.org/ciac/bulletins/l-116.shtml http://www.kb.cert.org/vuls/id/869184 http://www.securityfocus.com/bid/3048 https://exchange.xforce.ibmcloud.com/vulnerabilities/6903 •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite. • http://ciac.llnl.gov/ciac/bulletins/l-116.shtml http://www.cert.org/advisories/CA-2001-18.html http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3 http://www.kb.cert.org/vuls/id/869184 http://www.kb.cert.org/vuls/id/JPLA-4WESNV •

CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0

Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. • http://otn.oracle.com/deploy/security/pdf/oid_cert_bof.pdf http://www.cert.org/advisories/CA-2001-18.html http://www.ciac.org/ciac/bulletins/l-116.shtml http://www.kb.cert.org/vuls/id/869184 http://www.securityfocus.com/bid/3047 https://exchange.xforce.ibmcloud.com/vulnerabilities/6902 •