Vulnerabilities > CVE-2001-1321 - Denial-Of-Service vulnerability in Internet Directory 2.1.1/3.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |