Description
Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Affected products
- oracle / internet_directory2.1.1 – 2.1.1
- oracle / internet_directory3.0.1 – 3.0.1
References
- VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-2001-18.html
- VENDOR_ADVISORYhttp://otn.oracle.com/deploy/security/pdf/oid_cert_bof.pdf
- MISChttp://www.kb.cert.org/vuls/id/869184
- MISChttp://www.securityfocus.com/bid/3047
- MISChttp://www.ciac.org/ciac/bulletins/l-116.shtml
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6902