Vulnerabilities > CVE-2001-1319 - Denial of Service vulnerability in Microsoft Exchange 5.5 LDAP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Microsoft Exchange 5.5 2000 allows remote attackers to cause a denial of service (hang) via exceptional BER encodings for the LDAP filter type field, as demonstrated by the PROTOS LDAPv3 test suite.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
References
- http://ciac.llnl.gov/ciac/bulletins/l-116.shtml
- http://www.cert.org/advisories/CA-2001-18.html
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
- http://www.kb.cert.org/vuls/id/763400
- http://www.kb.cert.org/vuls/id/CFCN-4YAQC7
- http://www.securityfocus.com/bid/3045
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6899