Isode M-Vault Server ‘isode.eddy’ 双重释放漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109753 漏洞类型 缓冲区溢出
发布时间 2006-02-14 更新时间 2006-02-17
CVE编号 CVE-2006-0710 CNNVD-ID CNNVD-200602-224
漏洞平台 Multiple CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/27212
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200602-224
|漏洞详情
IsodeM-VaultServer11.3的isode.eddy中存在双重释放漏洞。远程攻击者可以借助特制的LDAP请求执行任意代码,如ProtoVerSampleLDAP演示的那样。
|漏洞EXP
source: http://www.securityfocus.com/bid/16635/info

Isode M-Vault Server is prone to a memory corruption. This issue may be triggered by malformed LDAP data.

The exact impact of this vulnerability is not known at this time. Although the issue is known to crash the server, the possibility of remote code execution is unconfirmed.

The vulnerability was reported for version 11.3 on the Linux platform; other versions and platforms may also be affected.

This vulnerability will be updated as further information is made available.

./run.py localhost 389 3102 1
|参考资料

来源:XF
名称:isode-mvault-ldap-dos(24700)
链接:http://xforce.iss.net/xforce/xfdb/24700
来源:BID
名称:16635
链接:http://www.securityfocus.com/bid/16635
来源:VUPEN
名称:ADV-2006-0567
链接:http://www.frsirt.com/english/advisories/2006/0567
来源:SECUNIA
名称:18818
链接:http://secunia.com/advisories/18818
来源:MLIST
名称:[Dailydave]20060213eddy0day
链接:http://lists.immunitysec.com/pipermail/dailydave/2006-February/002925.html