Vulnerability in Sun Iplanet_directory_server
CVE-2001-1306
iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite.
EPSS: 0.041 (89.4th percentile) — read the EPSS interpretation.
Affected products
- Sun Iplanet_directory_server
- N/a — versions n/a
References
- cve@mitre.org (US Government Resource, Patch, Third Party Advisory, x_refsource_CERT, third-party-advisory)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, Third Party Advisory, third-party-advisory)
- cve@mitre.org (US Government Resource, x_refsource_MISC)