Lucene search

MitreCVE-2010-0708

HistoryFeb 25, 2010 - 7:30 p.m.

CVE-2010-0708

2010-02-2519:30:00

mitre

web.nvd.nist.gov

cve

2010

0708

sun directory server

ldap

denial of service

nvd

vulnerabilities

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

79.6%

JSON

Multiple unspecified vulnerabilities in (1) ns-slapd and (2) slapd.exe in Sun Directory Server Enterprise Edition 7.0, Sun Java System Directory Server 5.2, and Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 allow remote attackers to cause a denial of service (daemon crash) via a crafted LDAP search request.

Affected configurations

Nvd

Node

sunjava_system_directory_serverMatch5.2

sunjava_system_directory_serverMatch6.0-enterprise

sunjava_system_directory_serverMatch6.1-enterprise

sunjava_system_directory_serverMatch6.2-enterprise

sunjava_system_directory_serverMatch6.3-enterprise

sunjava_system_directory_serverMatch6.3.1-enterprise

sunjava_system_directory_serverMatch7.0-enterprise

VendorProductVersionCPE
sunjava_system_directory_server5.2cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*
sunjava_system_directory_server6.0cpe:2.3:a:sun:java_system_directory_server:6.0:-:enterprise:*:*:*:*:*
sunjava_system_directory_server6.1cpe:2.3:a:sun:java_system_directory_server:6.1:-:enterprise:*:*:*:*:*
sunjava_system_directory_server6.2cpe:2.3:a:sun:java_system_directory_server:6.2:-:enterprise:*:*:*:*:*
sunjava_system_directory_server6.3cpe:2.3:a:sun:java_system_directory_server:6.3:-:enterprise:*:*:*:*:*
sunjava_system_directory_server6.3.1cpe:2.3:a:sun:java_system_directory_server:6.3.1:-:enterprise:*:*:*:*:*
sunjava_system_directory_server7.0cpe:2.3:a:sun:java_system_directory_server:7.0:-:enterprise:*:*:*:*:*

Vendor	Product	Version	CPE
sun	java_system_directory_server	5.2	cpe:2.3:a:sun:java_system_directory_server:5.2:::::::*
sun	java_system_directory_server	6.0	cpe:2.3:a:sun:java_system_directory_server:6.0:-:enterprise:::::*
sun	java_system_directory_server	6.1	cpe:2.3:a:sun:java_system_directory_server:6.1:-:enterprise:::::*
sun	java_system_directory_server	6.2	cpe:2.3:a:sun:java_system_directory_server:6.2:-:enterprise:::::*
sun	java_system_directory_server	6.3	cpe:2.3:a:sun:java_system_directory_server:6.3:-:enterprise:::::*
sun	java_system_directory_server	6.3.1	cpe:2.3:a:sun:java_system_directory_server:6.3.1:-:enterprise:::::*
sun	java_system_directory_server	7.0	cpe:2.3:a:sun:java_system_directory_server:7.0:-:enterprise:::::*

References

sunsolve.sun.com/search/document.do?assetkey=1-21-143884-01-1

sunsolve.sun.com/search/document.do?assetkey=1-26-275711-1

sunsolve.sun.com/search/document.do?assetkey=1-77-1021788.1-1

exchange.xforce.ibmcloud.com/vulnerabilities/56603

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

Confidence

High

EPSS

0.007

Percentile

79.6%

JSON

Related for CVE-2010-0708