CVE-2010-0313

Sun Java System Directory Server Enterprise Edition 7.0 - Denial of Service via LDAP Search Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0313. PoCs published by Intevydis.

AI-analyzed exploit summary This exploit triggers a null pointer dereference in Sun Java System Directory Server 7.0 by sending a malformed LDAP request, causing a denial-of-service (DoS) condition. The PoC constructs a crafted LDAP message with a null Base DN and a specific control OID to crash the ns-slapd daemon.

Description

The core_get_proxyauth_dn function in ns-slapd in Sun Java System Directory Server Enterprise Edition 7.0 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted LDAP Search Request message.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Intevydis · pythondosmultiple

https://www.exploit-db.com/exploits/33483

View Code ZIP pw:eip

This exploit triggers a null pointer dereference in Sun Java System Directory Server 7.0 by sending a malformed LDAP request, causing a denial-of-service (DoS) condition. The PoC constructs a crafted LDAP message with a null Base DN and a specific control OID to crash the ns-slapd daemon.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Sun Java System Directory Server 7.0

No auth needed

Prerequisites: Network access to the target LDAP service

MITRE ATT&CK