CVE-2007-2466

4 documents4 sources

Severity

7.8HIGH

EPSS

2.1%

top 15.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Java System Directory Server SUN ONE Directory Server

Timeline

PublishedMay 2

Latest updateMay 1

Description

Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5.2 up to Patch 4 and Sun ONE Directory Server 5.1, allows remote attackers to cause a denial of service (crash) via certain BER encodings.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDsun/java_system_directory_server5.2

▶NVDsun/one_directory_server5.1

Patches

Patch: www.securityfocus.com ↗Patch: www.securitytracker.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-pvxp-mv8r-jg5p: Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5↗2022-05-01

▶

CVEList

CVE-2007-2466: Unspecified vulnerability in the LDAP Software Development Kit (SDK) for C, as used in Sun Java System Directory Server 5↗2007-05-02

▶

💥Exploits & PoCs

Exploit-DB

EFS Easy Chat Server 2.2 - Remote Denial of Service↗2007-08-14

▶