CVE-2009-4080

medium

Description

Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors.

References

http://www.vupen.com/english/advisories/2009/3336

http://www.securitytracker.com/id?1023239

http://www.securityfocus.com/bid/37129

http://sunsolve.sun.com/search/document.do?assetkey=1-66-231402-1

http://sunsolve.sun.com/search/document.do?assetkey=1-21-112960-69-1

http://secunia.com/advisories/37506

http://secunia.com/advisories/37505

http://osvdb.org/60514

Details

Source: Mitre, NVD

Published: 2009-11-29

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium