Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
BID:23117
Info
Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
| Bugtraq ID: | 23117 |
| Class: | Design Error |
| CVE: |
CVE-2006-4175 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 23 2007 12:00AM |
| Updated: | May 01 2007 09:39PM |
| Credit: | The discoverer of this vulnerability wishes to remain anonymous. |
| Vulnerable: |
Sun ONE Directory Server 5.2 patch 4 Sun ONE Directory Server 5.2 patch 3 Sun ONE Directory Server 5.2 Sun ONE Directory Server 5.1 SP4 Sun ONE Directory Server 5.1 x86 Sun ONE Directory Server 5.1 SP3 x86 Sun ONE Directory Server 5.1 SP3 Sun ONE Directory Server 5.1 SP2 Sun ONE Directory Server 5.1 SP1 Sun ONE Directory Server 5.1 Sun Java System Directory Server 5.2 Patch4 Sun Java System Directory Server 5.2 Patch3 Sun Java System Directory Server 5.2 Patch2 Sun Java System Directory Server 5.2 2005Q4 Sun Java System Directory Server 5.2 2005Q1 Sun Java System Directory Server 5.2 2004Q2 Sun Java System Directory Server 5.2 2003Q4 Sun Java System Directory Server 5.2 |
| Not Vulnerable: | |
Discussion
Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
Sun Java System Directory Server is prone to a memory-corruption vulnerability due to a design error in the clean-up code following certain failed queries.
Successful exploits will result in a server crash, denying further service to legitimate users. Attackers may be able to exploit this issue for remote code execution, but this has not been confirmed.
Versions prior to 5.2 Patch5 are affected.
Sun Java System Directory Server is prone to a memory-corruption vulnerability due to a design error in the clean-up code following certain failed queries.
Successful exploits will result in a server crash, denying further service to legitimate users. Attackers may be able to exploit this issue for remote code execution, but this has not been confirmed.
Versions prior to 5.2 Patch5 are affected.
Exploit / POC
Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
Solution:
Sun has released a patch that addresses this issue. Please see the references for more information.
Sun Java System Directory Server 5.2 2004Q2
Sun Java System Directory Server 5.2 2005Q1
Sun Java System Directory Server 5.2 Patch3
Sun Java System Directory Server 5.2
Sun Java System Directory Server 5.2 2003Q4
Sun Java System Directory Server 5.2 Patch4
Sun Java System Directory Server 5.2 Patch2
Sun Java System Directory Server 5.2 2005Q4
Solution:
Sun has released a patch that addresses this issue. Please see the references for more information.
Sun Java System Directory Server 5.2 2004Q2
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 2005Q1
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 Patch3
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 2003Q4
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 Patch4
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 Patch2
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
Sun Java System Directory Server 5.2 2005Q4
-
Sun 115614-27
Solaris Sparc
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115614-27-1 -
Sun 115615-27
Solaris x86
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -115615-27-1 -
Sun 117667-04
Windows
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117667-04-1 -
Sun 117668-04
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117668-04-1 -
Sun 117669-04
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117669-04-1 -
Sun 117670-04
AIX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -117670-04-1 -
Sun 118080-12
Linux
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -118080-12-1 -
Sun 121393-02
HP-UX
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21 -121393-02-1
References
Sun Java System Directory Server Uninitialized Pointer Remote Memory Corruption Vulnerability
References:
References:
- Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error (iDefense Labs)
- Sun Java System Directory Server Homepage (Sun)
- Sun Java System Directory Server 5.2 Uninitialized Pointer Cleanup Design Error (iDefense Labs)
- January 10, 2012 - Multiple Sun ONE Directory Server vulnerabilities in PolicyCe (Blue Coat Systems)
- Sun Alert ID: 102853 - The Directory Server ('ns-slapd') May Exit Unexpectedly W (Sun)