Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0468

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0468
Last Modified 07 Mar 2011 09:30:05
Published 30 Jan 2006 01:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0468

Summary

CommuniGate Pro Core Server before 5.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via LDAP messages with negative BER lengths, and possibly other vectors, as demonstrated by the ProtoVer LDAP test suite.

Vulnerable Systems

Application

  • Stalker Communigate Pro 5.0

  • Stalker Communigate Pro 5.0.1

  • Stalker Communigate Pro 5.0.2

  • Stalker Communigate Pro 5.0.3

  • Stalker Communigate Pro 5.0.4

  • Stalker Communigate Pro 5.0.5

  • Stalker Communigate Pro 5.0.6

  • Stalker Communigate Pro 5.0c1

  • Stalker Communigate Pro 5.0c2

  • Stalker Communigate Pro 5.0c3

  • Stalker Communigate Pro 5.0c4

  • Stalker Communigate Pro 5.0c5

  • Stalker Communigate Pro 5.0c6

  • Stalker Communigate Pro 5.0c7


References

BID - 16407

BUGTRAQ - 20060128 Multiple vulnerabilities in CommuniGate Pro Server

MISC - http://www.gleg.net/advisory_cg.shtml

SECUNIA - 18640

VUPEN - ADV-2006-0364

CONFIRM - http://www.stalker.com/CommuniGatePro/History.html

XF - communigate-ldap-bo(24409)


Last Updated: 27 May 2016 10:41:40