[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2013-255 ---- 389-ds-base

ID: oval:org.secpod.oval:def:1600262Date: (C)2016-05-19   (M)2022-10-10
Class: PATCHFamily: unix




It was discovered that the 389 Directory Server did not properly handle certain Get Effective Rights search queries when the attribute list, which is a part of the query, included several names using the "@" character. An attacker able to submit search queries to the 389 Directory Server could cause it to crash.

Platform:
Amazon Linux AMI
Product:
389-ds-base
Reference:
ALAS-2013-255
CVE-2013-4485
CVE    1
CVE-2013-4485
CPE    3
cpe:/a:fedoraproject:389_directory_server:1.2.11.15
cpe:/o:amazon:linux
cpe:/a:fedoraproject:389_directory_server

© SecPod Technologies