java

Vulnerability reported in Java System Directory Server

Filed in archive Security on April 3, 2007

Vulnerability has been reported in Sun's Java System Directory Server by iDefense which can cause crash in a DoS attack. Due to this loophole hackers can even inject and execute malicious code. The security vulnerability is due to Directory server error which cannot handle certain types of failed queries in a proper manner and the attacker may cause vulnerable server to call the free function on a un initialized memory address while handling special request leading to denial of service. The threat is of moderate risk and can be remotely exploited.

Sun ONE Directory Server versions 5.x and Sun Java System Directory versions 5.x have been affected by this security threat. As of now the patch is not ready and in case the service crashes one should simply re launch it.

Related Entries:

« JavaScript hijacking can ... | Main | Create rich component-ori... »

Permalink: Vulnerability reported in Java System Directory Server

Tags: DoS attack Sun Java System Directory Server SunJava Java java java+system

Vote for Vulnerability reported in Java System Directory Server:

Currently 8.50/10
1
2
3
4
5
6
7
8
9
10

Rating: 8.50 out of 2 vote(s) cast.

Add your response to Vulnerability reported in Java System Directory Server:

Name: *

Email: (will never be shown)*

URL:

(* marked fields are required)

Notify me if more comments appear?

Subscribe to Java Entrepreneur newsletter? (Newsletters are sent out weekly).

Remember me

Security Code: *
(Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)

We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

Share It

RSS
Google
Yahoo!
Addthis
Bloglines
Twitter	Follow us on Twitter!

Tagcloud

All contents are protected by copyright. | Terms of Use | Privacy Policy | Contact Us