CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
93.4%
Buffer overflows in Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Vendor | Product | Version | CPE |
---|---|---|---|
critical_path | injoin_directory_server | 2.0 | cpe:2.3:a:critical_path:injoin_directory_server:2.0:*:*:*:*:*:*:* |
critical_path | injoin_directory_server | 2.1 | cpe:2.3:a:critical_path:injoin_directory_server:2.1:*:*:*:*:*:*:* |
critical_path | injoin_directory_server | 3.0 | cpe:2.3:a:critical_path:injoin_directory_server:3.0:*:*:*:*:*:*:* |
critical_path | injoin_directory_server | 3.1 | cpe:2.3:a:critical_path:injoin_directory_server:3.1:*:*:*:*:*:*:* |
critical_path | injoin_directory_server | 4.0 | cpe:2.3:a:critical_path:injoin_directory_server:4.0:*:*:*:*:*:*:* |
critical_path | livecontent_directory | 8a3 | cpe:2.3:a:critical_path:livecontent_directory:8a3:*:*:*:*:*:*:* |