CVE-2013-0312

EUVD-2013-0330
389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
Affected Products (NVD)
VendorProductVersion
fedoraproject389_directory_server
𝑥
≤ 1.3.0.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
389-ds-base
bookworm
2.3.1+dfsg1-1
fixed
bullseye
1.4.4.11-2
fixed
sid
3.1.1+dfsg1-2
fixed
trixie
3.1.1+dfsg1-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
389-ds-base
hardy
dne
lucid
dne
oneiric
dne
precise
ignored
quantal
ignored
raring
not-affected
saucy
not-affected
trusty
dne
utopic
not-affected
vivid
not-affected
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
Common Weakness Enumeration
References
http://directory.fedoraproject.org/wiki/Releases/1.3.0.4
http://rhn.redhat.com/errata/RHSA-2013-0628.html
http://secunia.com/advisories/52279
http://secunia.com/advisories/52568
http://www.securityfocus.com/bid/58428
https://bugzilla.redhat.com/show_bug.cgi?id=912964
https://fedorahosted.org/389/ticket/571
http://directory.fedoraproject.org/wiki/Releases/1.3.0.4
http://rhn.redhat.com/errata/RHSA-2013-0628.html
http://secunia.com/advisories/52279
http://secunia.com/advisories/52568
http://www.securityfocus.com/bid/58428
https://bugzilla.redhat.com/show_bug.cgi?id=912964
https://fedorahosted.org/389/ticket/571