CVE-2005-3269

CWE-119 — Buffer Overflow3 documents3 sources

Severity

7.5HIGH

EPSS

4.5%

top 10.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java System Directory Proxy Server SUN Java System Directory Server SUN ONE Administration Server +1 more

Timeline

PublishedOct 20

Latest updateMay 1

Description

Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages4 packages

▶NVDsun/java_system_directory_server5.2

▶NVDsun/java_system_directory_proxy_server5.2

▶NVDsun/one_directory_server4 versions+3

▶NVDsun/one_administration_server5.2

Patches

Patch: sunsolve.sun.com ↗Patch: sunsolve.sun.com ↗

🔴Vulnerability Details

GHSA

GHSA-wcrv-7ccm-jh9r: Stack-based buffer overflow in help↗2022-05-01

▶

CVEList

CVE-2005-3269: Stack-based buffer overflow in help↗2005-10-20

▶