Denial of Service in Sun Java System Directory Server Enterprise Edition 7.0
CVE-2010-0313

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Directory Server
Vendor: CVE Published:; 14 January 2010

Summary

The core_get_proxyauth_dn function within the Sun Java System Directory Server Enterprise Edition 7.0 is vulnerable to a denial of service attack. By sending a specially crafted LDAP Search Request message, remote attackers can trigger a NULL pointer dereference, ultimately causing the server to crash. This vulnerability poses significant risks for uninterrupted server operation and data accessibility.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/55511

vdb-entryx_refsource_XF

http://intevydis.blogspot.com/2010/01/sun-directory-serve...

x_refsource_MISC

http://securitytracker.com/id?1023431

vdb-entryx_refsource_SECTRACK

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 14, 2010
Vulnerability Reserved
Jan 14, 2010