Lucene search
HistoryFeb 23, 2011 - 7:00 p.m.
CVE-2011-0019
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.012
Percentile
85.0%
slapd (aka ns-slapd) in 389 Directory Server 1.2.7.5 (aka Red Hat Directory Server 8.2.x or dirsrv) does not properly handle simple paged result searches, which allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impact via multiple search requests.
Affected configurations
Node
fedoraproject389_directory_serverMatch1.2.7.5
Node
redhatdirectory_serverMatch8.2
ORredhatdirectory_serverMatch8.2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | 389_directory_server | 1.2.7.5 | cpe:2.3:a:fedoraproject:389_directory_server:1.2.7.5:*:*:*:*:*:*:* |
| redhat | directory_server | 8.2 | cpe:2.3:a:redhat:directory_server:8.2:*:*:*:*:*:*:* |
| redhat | directory_server | 8.2.3 | cpe:2.3:a:redhat:directory_server:8.2.3:*:*:*:*:*:*:* |
Related
altlinux
altlinux
Security fix for the ALT Linux 8 package 389-ds-base version 1.2.7.5-alt3
2011-02-23 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:01:44
cve
cve
cvelist
cvelist
prion
prion
Code injection
2011-02-23 19:00:00
Code injection
2011-02-23 19:00:00
Design/Logic Flaw
2011-02-23 19:00:00
nvd
nvd
CVE-2011-1067
2011-02-23 19:00:02
CVE-2010-4746
2011-02-23 19:00:01
redhat
redhat
(RHSA-2011:0293) Moderate: Red Hat Directory Server security update
2011-02-22 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.012
Percentile
85.0%
Related for NVD:CVE-2011-0019