ISS X-Force Database: sun-java-ldap-bo(20083): Sun One and JES Directory Server LDAP buffer overflow

Sun One and JES Directory Server LDAP buffer overflow

sun-java-ldap-bo (20083)

High Risk

Description:

Sun One Directory Server and Sun Java System Directory Server (JES) are vulnerable to a buffer overflow caused by improper bounds checking while handling Lightweight Directory Access Protocol (LDAP) requests. By sending a specially-crafted, invalid LDAP request, a remote attacker could overflow a buffer and execute arbitrary code on the system with LDAP privileges or cause the system to crash.

Platforms Affected:

Sun, Java System Directory Server 5.2
Sun, ONE Directory Server 5.1
Sun, Solaris 10
Sun, Solaris 8
Sun, Solaris 9

Remedy:

For Sun Solaris:
Apply the appropriate patch for your system, as listed below. Refer to Sun Alert ID: 57754 for more information. See References.

5.1 SPARC and x86 Platform (8, 9, and 10):
Upgrade to the latest version of Sun ONE Directory Server (SP4 or later), as listed in Sun Alert ID: 57754.

5.2 SPARC for Sun Java System Directory Server:
Solaris 8, 9, and 10 with patch: 115614-20 or later

— OR —

Solaris 8, 9, and 10 with patch: 117665-02 or later

5.2 x86:
Solaris 8, 9, and 10 with patch: 115615-20 or later

— OR —

Solaris 8, 9, and 10 with patch: 117666-02 or later

5.2 for Linux:
Apply patch 118080-05 or 117668-02 or later

5.2 for Windows:
Apply patch 117667-02 or later

5.2 for HP-UX:
Apply patch 117669-02 or later

5.2 for AIX:
Apply patch 117670-02 or later

For other distributions:
Contact your vendor for upgrade or patch information.

Consequences:

Gain Access

References:

CIAC INFORMATION BULLETIN P-183, The Sun ONE and JES Directory Server Contain a Buffer Overflow involving LDAP at http://www.ciac.org/ciac/bulletins/p-183.shtml.
Sun Alert ID: 57754, The Sun ONE and JES Directory Server Contain a Buffer Overflow involving LDAP at http://sunsolve.sun.com/search/document.do?assetkey=1-26-57754-1.

Reported:

Apr 13, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page