CVE-2001-1306
N/A
N/A
Summary
iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.cert.org/advisories/CA-2001-18.html
- ftp://patches.sgi.com/support/free/security/advisories/20011102-01-I
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
- http://www.kb.cert.org/vuls/id/276944
- http://www.kb.cert.org/vuls/id/JPLA-4WESMM
References
- http://www.cert.org/advisories/CA-2001-18.html
- ftp://patches.sgi.com/support/free/security/advisories/20011102-01-I
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
- http://www.kb.cert.org/vuls/id/276944
- http://www.kb.cert.org/vuls/id/JPLA-4WESMM
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.