CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-3250

HIGH
7.5
CVSS Severity Score
EPSS Score0.0440%
EPSS Percentile17.08th
Published2017年9月7日
Last Modified2026年5月13日

Vulnerability Description

Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors.

Affected Platforms (CPE)

📦
Apache

Directory Ldap Api

<= 1.0.0

References & Advisories

🔗 http://directory.apache.org/api/#news_1
🔗 http://www.openwall.com/lists/oss-security/2015/07/07/11
🔗 http://www.openwall.com/lists/oss-security/2015/07/07/5
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1241163
🔗 http://directory.apache.org/api/#news_1
🔗 http://www.openwall.com/lists/oss-security/2015/07/07/11
🔗 http://www.openwall.com/lists/oss-security/2015/07/07/5
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1241163

相關漏洞威脅

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2018-13379.8

In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use th...

CVE-2013-70915.0

Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 ...

CVE-2008-72874.0

Multiple memory leaks in the (1) ldap_init and (2) ldap_url_search_direct API functions in IBM Tivoli Directory Server (TDS) 5.2 b...