CVE-2007-2466

Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings.

Published: May 3, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-2466
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sun / java_system_directory_server	5.2	5.2.x
sun / one_directory_server	5.1	5.1.x
sun / java_system_directory_server	5.2-2003q4	5.2-2003q4.x
sun / java_system_directory_server	5.2-2005q1	5.2-2005q1.x
sun / java_system_directory_server	5.2-2005q4	5.2-2005q4.x
sun / java_system_directory_server	5.2-2004q2	5.2-2004q2.x

http://osvdb.org/35743
http://secunia.com/advisories/25091
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102895-1
http://www.securityfocus.com/bid/23743
http://www.securitytracker.com/id?1017991
http://www.vupen.com/english/advisories/2007/1610
https://exchange.xforce.ibmcloud.com/vulnerabilities/34002

Vulnerability Database

289,697

CVE-2007-2466