CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4746

Multiple memory leaks in the normalization functionality in 389 Directory Server before 1.2.7.5 allow remote attackers to cause a denial of service (memory consumption) via "badly behaved applications," related to (1) Slapi_Attr mishandling in the DN normalization code and (2) pointer mishandling in the syntax normalization code, a different issue than CVE-2011-0019.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.7%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2010-4746

Fedoraproject » 389 Directory Server » Version: 1.2.1

cpe:2.3:a:fedoraproject:389_directory_server:1.2.1
Fedoraproject » 389 Directory Server » Version: 1.2.2

cpe:2.3:a:fedoraproject:389_directory_server:1.2.2
Fedoraproject » 389 Directory Server » Version: 1.2.3

cpe:2.3:a:fedoraproject:389_directory_server:1.2.3
Fedoraproject » 389 Directory Server » Version: 1.2.5

cpe:2.3:a:fedoraproject:389_directory_server:1.2.5
Fedoraproject » 389 Directory Server » Version: 1.2.6

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6
Fedoraproject » 389 Directory Server » Version: 1.2.6.1

cpe:2.3:a:fedoraproject:389_directory_server:1.2.6.1
Fedoraproject » 389 Directory Server » Version: 1.2.7

cpe:2.3:a:fedoraproject:389_directory_server:1.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4746

Products

Pricing

Contact Us