Vulnerabilities > CVE-2010-2222 - NULL Pointer Dereference vulnerability in Redhat 389 Directory Server and Directory Server

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

redhat

CWE-476

NVD

Published: 2019-11-05

Updated: 2024-11-21

Summary

The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a denial of service (NULL pointer dereference) via a crafted search query.

Vulnerable Configurations

Part	Description	Count
Application	Redhat Redhat Directory Server 8.0	1
OS	Redhat Redhat 389 Directory Server -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://access.redhat.com/security/cve/cve-2010-2222
https://access.redhat.com/security/cve/cve-2010-2222
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-2222
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-2222