Vulnerability in Sun Java_system_directory_server

CVE-2008-1995

Sun Java System Directory Proxy Server 6.0, 6.1, and 6.2 classifies a connection using the "bind-dn" criteria, which can cause an incorrect application of policy and allows remote attackers to bypass intended access restrictions for the se…

EPSS: 0.022 (80.0th percentile) — read the EPSS interpretation.

Affected products

Sun Java_system_directory_server — versions 6.0, 6.1, 6.2
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (vendor-advisory, x_refsource_SUNALERT)
cve@mitre.org (vdb-entry, x_refsource_VUPEN)
cve@mitre.org (vdb-entry, x_refsource_BID)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (x_refsource_SECUNIA, Vendor Advisory, third-party-advisory)