Vulnerability Details CVE-2001-1317
Teamware Office Enterprise Directory allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for certain BER object types, as demonstrated by the PROTOS LDAPv3 test suite.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.065
EPSS Ranking 90.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://ciac.llnl.gov/ciac/bulletins/l-116.shtml
- http://www.cert.org/advisories/CA-2001-18.html
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
- http://www.kb.cert.org/vuls/id/688960
- http://www.kb.cert.org/vuls/id/JPLA-4WESNA
- http://ciac.llnl.gov/ciac/bulletins/l-116.shtml
- http://www.cert.org/advisories/CA-2001-18.html
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
- http://www.kb.cert.org/vuls/id/688960
- http://www.kb.cert.org/vuls/id/JPLA-4WESNA
Products affected by CVE-2001-1317
-
cpe:2.3:a:teamware:teamware_office:5.0
-
cpe:2.3:a:teamware:teamware_office:5.1
-
cpe:2.3:a:teamware:teamware_office:5.2
-
cpe:2.3:a:teamware:teamware_office:5.3
-
cpe:2.3:a:teamware:teamware_office:5.4