Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0974

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0974
Last Modified 05 Sep 2008 04:25:22
Published 17 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0974

Summary

Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.

Vulnerable Systems

Application

  • Oracle Internet Directory 2.1.1

  • Oracle Internet Directory 3.0.1


References

CERT-VN - VU#869184

CERT - CA-2001-18

XF - oracle-ldap-protos-format-string(6903)

BID - 3048

CIAC - L-116


Last Updated: 27 May 2016 10:36:28