4 results (0.007 seconds)

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

The Online Help feature in Sun Java System Directory Server 5.2 and Enterprise Edition 5 allows remote attackers to determine the existence of files and directories, and possibly obtain partial contents of files, via unspecified vectors. La característica Online Help en Sun Java System Directory Server 5.2 y Enterprise Edition 5 permite a atacantes remotos determinar la existencia de ficheros y directorios y posiblemente obtener contenidos parciales de ficheros mediante vectores no especificados. • http://osvdb.org/53800 http://secunia.com/advisories/34751 http://sunsolve.sun.com/search/document.do?assetkey=1-66-255848-1 http://www.securityfocus.com/bid/34548 http://www.vupen.com/english/advisories/2009/1059 •

CVSS: 7.8EPSS: 2%CPEs: 2EXPL: 0

Unspecified vulnerability in Sun Java System Directory Server 5.2 p6 and earlier, and Enterprise Edition 5, allows remote attackers to cause a denial of service (daemon crash) via crafted LDAP requests. Vulnerabilidad no especificada en Sun Java System Directory Server v5.2 p6 y versiones anteriores, y Enterprise Edition v5, permite a atacantes remotos provocar una denegación de servicio (parada de demonio) mediante peticiones LDAP manipuladas. • http://secunia.com/advisories/33850 http://sunsolve.sun.com/search/document.do?assetkey=1-21-116837-04-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-250086-1 http://www.securityfocus.com/bid/33732 http://www.vupen.com/english/advisories/2009/0409 https://exchange.xforce.ibmcloud.com/vulnerabilities/48662 •

CVSS: 7.5EPSS: 1%CPEs: 20EXPL: 0

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges. • http://marc.info/?l=bugtraq&m=112862037500012&w=2 http://marc.info/?l=bugtraq&m=113815459026080&w=2 http://secunia.com/advisories/17092 http://secunia.com/advisories/18590 http://securityreason.com/securityalert/367 http://securityreason.com/securityalert/51 http://securitytracker.com/id?1015014 http://securitytracker.com/id?1015536 http://securitytracker.com/id? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 3%CPEs: 93EXPL: 0

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message. • http://marc.info/?l=bugtraq&m=109351293827731&w=2 http://www.securityfocus.com/bid/11015 http://xforce.iss.net/xforce/alerts/id/180 https://exchange.xforce.ibmcloud.com/vulnerabilities/16314 •