CVE-2006-0647

Sun Java System Directory Server 5.2 - Denial of Service via Crafted Subtree Search Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0647. PoCs published by Evgeny Legerov.

AI-analyzed exploit summary The provided code is a stub for a DoS exploit targeting Sun ONE Directory Server. It lacks the actual payload or malformed traffic generation logic, only referencing external sample code by Evgeny Legerov.

Description

LDAP service in Sun Java System Directory Server 5.2, running on Linux and possibly other platforms, allows remote attackers to cause a denial of service (memory allocation error) via an LDAP packet with a crafted subtree search request, as demonstrated using the ProtoVer LDAP test suite.

Exploits (1)

exploitdb STUB VERIFIED

by Evgeny Legerov · textdosmultiple

https://www.exploit-db.com/exploits/27171

View Code ZIP pw:eip

The provided code is a stub for a DoS exploit targeting Sun ONE Directory Server. It lacks the actual payload or malformed traffic generation logic, only referencing external sample code by Evgeny Legerov.

Classification

Stub 80%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Sun ONE Directory Server

No auth needed

Prerequisites: Network access to the target server

MITRE ATT&CK