Sun Java System Directory Server Multiple Vulnerabilities

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.

Synopsis :

The remote LDAP server has multiple vulnerabilities.

Description :

The remote host is running the Sun Java System Directory Server, an
LDAP server from Sun Microsystems.

The remote version of this service is affected by multiple
vulnerabilities. Versions 6.0 and prior to 5.2 Patch 5 are affected
by :

- list attributes information disclosure
- Unauthorized Access (restricted to super users).

Versions prior to 5.2 Patch 5 are affected by :

- Denial of service due to the BER decoding handler
- Memory corruption in the failed request handler.

See also :

Solution :

Upgrade to Sun Java System Directory Server 5.2 Patch 5 or 6.1 or

Risk factor :

High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.8
Public Exploit Available : false

Family: Gain a shell remotely

Nessus Plugin ID: 25705 ()

Bugtraq ID: 23117

CVE ID: CVE-2006-4175

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now