Description
The core_get_proxyauth_dn function in ns-slapd in Sun Java System Directory Server Enterprise Edition 7.0 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted LDAP Search Request message.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Intevydis · pythondosmultiple
https://www.exploit-db.com/exploits/33483
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55511
Exploit x_refsource_misc
http://intevydis.blogspot.com/2010/01/sun-directory-server-70.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1023431
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0085
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/37699
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37978
Scores
EPSS
0.0887
EPSS Percentile
92.6%
Details
Status
published
Products (1)
sun/java_system_directory_server
7.0
Published
Jan 14, 2010
Tracked Since
Feb 18, 2026