CVE-2012-0833
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
03/07/2012
Last modified:
11/04/2025
Description
The acllas__handle_group_entry function in servers/plugins/acl/acllas.c in 389 Directory Server before 1.2.10 does not properly handled access control instructions (ACIs) that use certificate groups, which allows remote authenticated LDAP users with a certificate group to cause a denial of service (infinite loop and CPU consumption) by binding to the server.
Impact
Base Score 2.0
2.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:fedoraproject:389_directory_server:*:rc1:*:*:*:*:*:* | 1.2.10 (including) | |
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc1:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc2:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc3:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.5:rc4:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:*:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a2:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a3:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:a4:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc1:*:*:*:*:*:* | ||
| cpe:2.3:a:fedoraproject:389_directory_server:1.2.6:rc2:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://rhn.redhat.com/errata/RHSA-2012-0813.html
- http://secunia.com/advisories/48035
- http://secunia.com/advisories/49562
- https://fedorahosted.org/389/changeset/1bbbb3e5049c1aa0650546efab87ed2f1ea59637/389-ds-base
- https://fedorahosted.org/389/ticket/162
- http://rhn.redhat.com/errata/RHSA-2012-0813.html
- http://secunia.com/advisories/48035
- http://secunia.com/advisories/49562
- https://fedorahosted.org/389/changeset/1bbbb3e5049c1aa0650546efab87ed2f1ea59637/389-ds-base
- https://fedorahosted.org/389/ticket/162