CVE-2001-1315 | Vulnerability Database | Aqua Security

Critical Path (1) InJoin Directory Server or (2) LiveContent Directory allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed BER encodings, as demonstrated by the PROTOS LDAPv3 test suite.

Affected Software

Name	Vendor	Start Version	End Version
Injoin_directory_server	Critical_path	2.0 (including)	2.0 (including)
Injoin_directory_server	Critical_path	2.1 (including)	2.1 (including)
Injoin_directory_server	Critical_path	3.0 (including)	3.0 (including)
Injoin_directory_server	Critical_path	3.1 (including)	3.1 (including)
Injoin_directory_server	Critical_path	4.0 (including)	4.0 (including)
Livecontent_directory	Critical_path	8a3 (including)	8a3 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2001-07/0770.html
http://ciac.llnl.gov/ciac/bulletins/l-116.shtml
http://www.cert.org/advisories/CA-2001-18.html
http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/ldapv3/
http://www.kb.cert.org/vuls/id/657547
http://www.kb.cert.org/vuls/id/JPLA-4ZKLEM

NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-1315
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html