7 results (0.008 seconds)

CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0

Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors. Vulnerabilidad no especificada en Sun ONE/Java System Directory Server (slapd) 6.0, y 5.x anterior a 5.2 Parche 5, permite a atacantes remotos en determinar la existencia de atributos de una entrada a través de vectores no especificados. • http://osvdb.org/37247 http://secunia.com/advisories/25666 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1 http://www.securityfocus.com/bid/24467 http://www.securitytracker.com/id?1018254 http://www.vupen.com/english/advisories/2007/2189 https://exchange.xforce.ibmcloud.com/vulnerabilities/34858 •

CVSS: 7.8EPSS: 6%CPEs: 6EXPL: 0

Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings. Vulnerabilidad no especificada en LDAP Software Development Kit (SDK) para C, como el usado en Sun Java System Directory Server 5.2 hasta el Patch 4 y Sun ONE Directory Server 5.1, permite a atacantes remotos provocar una denegación de servicio (caída) mediante ciertas codificaciones BER. • http://osvdb.org/35743 http://secunia.com/advisories/25091 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1 http://www.securityfocus.com/bid/23743 http://www.securitytracker.com/id?1017991 http://www.vupen.com/english/advisories/2007/1610 https://exchange.xforce.ibmcloud.com/vulnerabilities/34002 •

CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0

The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations. El servidor LDAP (ns-slapd) de Sun Java System Directory Server 5.2 Patch4 y anteriores y ONE Directory Server 5.1 y 5.2 permite a atacantes remotos provocar una denegación de servicio (caída) mediante peticiones mal formadas, probablemente peticiones BER mal formadas, las cuales disparan una liberación de posiciones de memoria sin inicializar. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491 http://secunia.com/advisories/24634 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1 http://www.osvdb.org/33524 http://www.securityfocus.com/bid/23117 http://www.securitytracker.com/id?1017814 http://www.vupen.com/english/advisories/2007/1090 https://exchange.xforce.ibmcloud.com/vulnerabilities/33189 • CWE-824: Access of Uninitialized Pointer •

CVSS: 7.5EPSS: 1%CPEs: 20EXPL: 0

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges. • http://marc.info/?l=bugtraq&m=112862037500012&w=2 http://marc.info/?l=bugtraq&m=113815459026080&w=2 http://secunia.com/advisories/17092 http://secunia.com/advisories/18590 http://securityreason.com/securityalert/367 http://securityreason.com/securityalert/51 http://securitytracker.com/id?1015014 http://securitytracker.com/id?1015536 http://securitytracker.com/id? • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 3%CPEs: 93EXPL: 0

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message. • http://marc.info/?l=bugtraq&m=109351293827731&w=2 http://www.securityfocus.com/bid/11015 http://xforce.iss.net/xforce/alerts/id/180 https://exchange.xforce.ibmcloud.com/vulnerabilities/16314 •