CVE-2013-0312 - Vulnerability Details - OpenCVE

389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.01382.

Key SSVC decision points have not yet been added.

Vendors	Products
Fedoraproject Subscribe	389 Directory Server Subscribe
Redhat Subscribe	Enterprise Linux Subscribe

Configuration 1 [-]

cpe:2.3:a:fedoraproject:389_directory_server:*:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 6
389-ds-base-0:1.2.11.15-12.el6_4	cpe:/o:redhat:enterprise_linux:6	RHSA-2013:0628	2013-03-11T00:00:00Z

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2013-0330	389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://directory.fedoraproject.org/wiki/Releases/1.3.0.4
http://rhn.redhat.com/errata/RHSA-2013-0628.html
http://secunia.com/advisories/52279
http://secunia.com/advisories/52568
http://www.securityfocus.com/bid/58428
https://bugzilla.redhat.com/show_bug.cgi?id=912964
https://fedorahosted.org/389/ticket/571
https://nvd.nist.gov/vuln/detail/CVE-2013-0312
https://www.cve.org/CVERecord?id=CVE-2013-0312

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-03-13T20:48:00Z

Updated: 2024-09-16T19:41:19.241Z

Reserved: 2012-12-06T00:00:00Z

Link: CVE-2013-0312

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2013-03-13T20:55:02.173

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-0312

Redhat

Severity : Moderate

Publid Date: 2013-03-11T00:00:00Z

Links: CVE-2013-0312 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

CWE-189

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-03-13T20:48:00Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4"}, {"name": "52568", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/52568"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=912964"}, {"tags": ["x_refsource_MISC"], "url": "https://fedorahosted.org/389/ticket/571"}, {"name": "58428", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/58428"}, {"name": "RHSA-2013:0628", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2013-0628.html"}, {"name": "52279", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/52279"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2013-0312", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4", "refsource": "CONFIRM", "url": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4"}, {"name": "52568", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/52568"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=912964", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=912964"}, {"name": "https://fedorahosted.org/389/ticket/571", "refsource": "MISC", "url": "https://fedorahosted.org/389/ticket/571"}, {"name": "58428", "refsource": "BID", "url": "http://www.securityfocus.com/bid/58428"}, {"name": "RHSA-2013:0628", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-0628.html"}, {"name": "52279", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/52279"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T14:25:09.049Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4"}, {"name": "52568", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/52568"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=912964"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://fedorahosted.org/389/ticket/571"}, {"name": "58428", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/58428"}, {"name": "RHSA-2013:0628", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2013-0628.html"}, {"name": "52279", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/52279"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2013-0312", "datePublished": "2013-03-13T20:48:00Z", "dateReserved": "2012-12-06T00:00:00Z", "dateUpdated": "2024-09-16T19:41:19.241Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fedoraproject:389_directory_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "3E2FD185-D591-44E9-8A59-FBF37E6E4FAF", "versionEndIncluding": "1.3.0.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence."}, {"lang": "es", "value": "389 Directory Server anterior a v1.3.0.4 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de una secuencia de control de longitud cero LDAP."}], "id": "CVE-2013-0312", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-03-13T20:55:02.173", "references": [{"source": "secalert@redhat.com", "url": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2013-0628.html"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/52279"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/52568"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/58428"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=912964"}, {"source": "secalert@redhat.com", "url": "https://fedorahosted.org/389/ticket/571"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://directory.fedoraproject.org/wiki/Releases/1.3.0.4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2013-0628.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/52279"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/52568"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/58428"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=912964"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://fedorahosted.org/389/ticket/571"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}