Detections
Analytics

CVE-2007-4566

critical

Description

Multiple buffer overflows in the login mechanism in sidvault in Alpha Centauri Software SIDVault LDAP Server before 2.0f allow remote attackers to execute arbitrary code via crafted LDAP packets, as demonstrated by a long dc entry in an LDAP bind.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/36272

http://www.vupen.com/english/advisories/2007/2976

http://www.securitytracker.com/id?1018612

http://www.securityfocus.com/bid/25460

http://www.securityfocus.com/archive/1/477821/100/0/threaded

http://securityreason.com/securityalert/3061

http://secunia.com/advisories/26613

http://lists.grok.org.uk/pipermail/full-disclosure/2007-August/065453.html

Details

Source: Mitre, NVD

Published: 2007-08-28

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.58253