The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 102895 Security Vulnerability in Sun Java System Directory Server May Cause Denial of Service (DoS)

Guest Author
Product: Sun Java System Directory Server 5.2, Sun Java System Directory Server Enterprise Edition, Sun ONE Directory Server 5.1

A local or remote unprivileged user may be able to cause the Sun Java System Directory Server to crash. This is a Denial of Service (DoS) due to a "Ber decoding" issue in the LDAP Software Development Kit (SDK) for C.

Avoidance: Patch, Upgrade
State: Resolved
First released: 01-May-2007

Join the discussion

Comments ( 1 )
  • Howard Chu Tuesday, May 8, 2007
    Where is the info on the actual exploit? Since RedHat/Fedora/Mozilla use the same SDK, is a similar patch relevant for them? It would be nice to be able to test our own code to see if the same vulnerability exists there.
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.