Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3269

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3269
Last Modified 19 May 2011 12:00:00
Published 20 Oct 2005 07:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3269

Summary

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.

Vulnerable Systems

Application

  • Sun Java System Directory Proxy Server 5.2

  • Sun Java System Directory Server 5.2

  • Sun One Administration Server 5.2

  • Sun One Directory Server 4.16

  • Sun One Directory Server 5.0

  • Sun One Directory Server 5.0 Sp2

  • Sun One Directory Server 5.1


References

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=1-21-117665-03-1

XF - redhat-directory-admin-bo(24311)

VUPEN - ADV-2005-1988

BID - 16345

BID - 15013

SUNALERT - 228419

SUNALERT - 102002

SECTRACK - 1015538

SECTRACK - 1015537

SECTRACK - 1015536

SECTRACK - 1015014

SREASON - 51

SREASON - 367

SECUNIA - 18590

SECUNIA - 17092

BUGTRAQ - 20060122 High Risk Vulnerability in Red Hat Directory Server and Red Hat Certificate Server

BUGTRAQ - 20051006 High Risk Vulnerability in Sun Directory Server


Last Updated: 27 May 2016 10:40:52