CVE-2005-3269

Currently unrated

Key Information:

Vendor: Oracle
Status: One Administration Server; One Directory Server; Java System Directory Server; Java System Directory Proxy Server
Vendor: CVE Published:; 20 October 2005

Summary

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.

References

http://securitytracker.com/id?1015538

vdb-entryx_refsource_SECTRACK

http://marc.info/?l=bugtraq&m=112862037500012&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/15013

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 20, 2005
Vulnerability Reserved
Oct 20, 2005