CVE-2001-0974

UNRATED

Description

Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.

Affected products

oracle / internet_directory2.1.1 – 2.1.1
oracle / internet_directory3.0.1 – 3.0.1

References

MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6903
MISChttp://www.securityfocus.com/bid/3048
VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-2001-18.html
MISChttp://www.kb.cert.org/vuls/id/869184
MISChttp://www.ciac.org/ciac/bulletins/l-116.shtml