CVE-2008-2928

Multiple buffer overflows in the adminutil library in CGI applications in Red Hat Directory Server 7.1 before SP7 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted Accept-Language HTTP header.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:directory_server:7.1:sp1:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:sp2:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:sp3:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:sp4:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:sp5:*:*:*:*:*:*
cpe:2.3:a:redhat:directory_server:7.1:sp6:*:*:*:*:*:*

History

No history.

Information

Published : 2008-08-29 18:41

Updated : 2024-02-28 11:21


NVD link : CVE-2008-2928

Mitre link : CVE-2008-2928

CVE.ORG link : CVE-2008-2928


JSON object : View

Products Affected

redhat

  • directory_server
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer