7.8

CVE-2006-4175

The LDAP server (ns-slapd) in Sun Java System Directory Server 5.2 Patch4 and earlier and ONE Directory Server 5.1 and 5.2 allows remote attackers to cause a denial of service (crash) via malformed queries, probably malformed BER queries, which trigger a free of uninitialized memory locations.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunOne Directory Server Version5.1
SunOne Directory Server Version5.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.43% 0.874
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
CWE-824 Access of Uninitialized Pointer

The product accesses or uses a pointer that has not been initialized.

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=491
Vendor Advisory
Broken Link
http://secunia.com/advisories/24634
Vendor Advisory
Broken Link
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102853-1
Broken Link
http://www.osvdb.org/33524
Broken Link
http://www.securityfocus.com/bid/23117
Third Party Advisory
Broken Link
VDB Entry
http://www.securitytracker.com/id?1017814
Third Party Advisory
Broken Link
VDB Entry
http://www.vupen.com/english/advisories/2007/1090
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/33189
Third Party Advisory
VDB Entry