CVE-2001-0974

Description

Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.

Affected Software
References

Software	From	Fixed in
oracle / internet_directory	2.1.1	2.1.1.x
oracle / internet_directory	3.0.1	3.0.1.x

http://www.cert.org/advisories/CA-2001-18.html
http://www.ciac.org/ciac/bulletins/l-116.shtml
http://www.kb.cert.org/vuls/id/869184
http://www.securityfocus.com/bid/3048
https://exchange.xforce.ibmcloud.com/vulnerabilities/6903

Severity: High

CVE: CVE-2001-0974
Published: Jul 17, 2001
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CVE-2001-0974

Description

Details

CVSS v2