Vulnerability Details CVE-2001-0975
Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.072
EPSS Ranking 91.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://otn.oracle.com/deploy/security/pdf/oid_cert_bof.pdf
- http://www.cert.org/advisories/CA-2001-18.html
- http://www.ciac.org/ciac/bulletins/l-116.shtml
- http://www.kb.cert.org/vuls/id/869184
- http://www.securityfocus.com/bid/3047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6902
- http://otn.oracle.com/deploy/security/pdf/oid_cert_bof.pdf
- http://www.cert.org/advisories/CA-2001-18.html
- http://www.ciac.org/ciac/bulletins/l-116.shtml
- http://www.kb.cert.org/vuls/id/869184
- http://www.securityfocus.com/bid/3047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6902
Products affected by CVE-2001-0975
-
cpe:2.3:a:oracle:internet_directory:2.1.1
-
cpe:2.3:a:oracle:internet_directory:3.0.1