What is the severity of CVE-2012-0833?

CVE-2012-0833 is classified as a denial of service vulnerability in the 389 Directory Server.

How do I fix CVE-2012-0833?

To fix CVE-2012-0833, you should upgrade 389 Directory Server to version 1.2.10 or later.

Which versions of 389 Directory Server are affected by CVE-2012-0833?

CVE-2012-0833 affects 389 Directory Server versions prior to 1.2.10.

Can CVE-2012-0833 be exploited remotely?

Yes, CVE-2012-0833 can be exploited remotely by authenticated LDAP users leveraging certificate groups.

What impact does CVE-2012-0833 have on the system?

CVE-2012-0833 can lead to a denial of service, causing disruptions in the 389 Directory Server operations.

Vulnerability/
CVE-2012-0833

low

2.3

CWE

264

3/7/2012

6/8/2024

CVE-2012-0833

First published: Tue Jul 03 2012(Updated: )

The acllas__handle_group_entry function in servers/plugins/acl/acllas.c in 389 Directory Server before 1.2.10 does not properly handled access control instructions (ACIs) that use certificate groups, which allows remote authenticated LDAP users with a certificate group to cause a denial of service (infinite loop and CPU consumption) by binding to the server.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Red Hat 389 Directory Server	<=1.2.10
Red Hat 389 Directory Server	=1.2.1
Red Hat 389 Directory Server	=1.2.2
Red Hat 389 Directory Server	=1.2.3
Red Hat 389 Directory Server	=1.2.5
Red Hat 389 Directory Server	=1.2.5-rc1
Red Hat 389 Directory Server	=1.2.5-rc2
Red Hat 389 Directory Server	=1.2.5-rc3
Red Hat 389 Directory Server	=1.2.5-rc4
Red Hat 389 Directory Server	=1.2.6
Red Hat 389 Directory Server	=1.2.6-a2
Red Hat 389 Directory Server	=1.2.6-a3
Red Hat 389 Directory Server	=1.2.6-a4
Red Hat 389 Directory Server	=1.2.6-rc1
Red Hat 389 Directory Server	=1.2.6-rc2
Red Hat 389 Directory Server	=1.2.6-rc3
Red Hat 389 Directory Server	=1.2.6-rc6
Red Hat 389 Directory Server	=1.2.6-rc7
Red Hat 389 Directory Server	=1.2.6.1
Red Hat 389 Directory Server	=1.2.7-alpha3
Red Hat 389 Directory Server	=1.2.7.5
Red Hat 389 Directory Server	=1.2.8-alpha1
Red Hat 389 Directory Server	=1.2.8-alpha2
Red Hat 389 Directory Server	=1.2.8-alpha3
Red Hat 389 Directory Server	=1.2.8-rc1
Red Hat 389 Directory Server	=1.2.8-rc2
Red Hat 389 Directory Server	=1.2.8.1
Red Hat 389 Directory Server	=1.2.8.2
Red Hat 389 Directory Server	=1.2.8.3
Red Hat 389 Directory Server	=1.2.9.9
Red Hat 389 Directory Server	=1.2.10-alpha8

Remedy

https://fedorahosted.org/389/changeset/1bbbb3e5049c1aa0650546efab87ed2f1ea59637/389-ds-base

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0833?
CVE-2012-0833 is classified as a denial of service vulnerability in the 389 Directory Server.
How do I fix CVE-2012-0833?
To fix CVE-2012-0833, you should upgrade 389 Directory Server to version 1.2.10 or later.
Which versions of 389 Directory Server are affected by CVE-2012-0833?
CVE-2012-0833 affects 389 Directory Server versions prior to 1.2.10.
Can CVE-2012-0833 be exploited remotely?
Yes, CVE-2012-0833 can be exploited remotely by authenticated LDAP users leveraging certificate groups.
What impact does CVE-2012-0833 have on the system?
CVE-2012-0833 can lead to a denial of service, causing disruptions in the 389 Directory Server operations.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/references
agent/last-modified-date
agent/author
agent/remedy
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/fedoraproject
canonical/red hat 389 directory server
version/red hat 389 directory server/1.2.10
version/red hat 389 directory server/1.2.1
version/red hat 389 directory server/1.2.2
version/red hat 389 directory server/1.2.3
version/red hat 389 directory server/1.2.5
version/red hat 389 directory server/1.2.5-rc1
version/red hat 389 directory server/1.2.5-rc2
version/red hat 389 directory server/1.2.5-rc3
version/red hat 389 directory server/1.2.5-rc4
version/red hat 389 directory server/1.2.6
version/red hat 389 directory server/1.2.6-a2
version/red hat 389 directory server/1.2.6-a3
version/red hat 389 directory server/1.2.6-a4
version/red hat 389 directory server/1.2.6-rc1
version/red hat 389 directory server/1.2.6-rc2
version/red hat 389 directory server/1.2.6-rc3
version/red hat 389 directory server/1.2.6-rc6
version/red hat 389 directory server/1.2.6-rc7
version/red hat 389 directory server/1.2.6.1
version/red hat 389 directory server/1.2.7-alpha3
version/red hat 389 directory server/1.2.7.5
version/red hat 389 directory server/1.2.8-alpha1
version/red hat 389 directory server/1.2.8-alpha2
version/red hat 389 directory server/1.2.8-alpha3
version/red hat 389 directory server/1.2.8-rc1
version/red hat 389 directory server/1.2.8-rc2
version/red hat 389 directory server/1.2.8.1
version/red hat 389 directory server/1.2.8.2
version/red hat 389 directory server/1.2.8.3
version/red hat 389 directory server/1.2.9.9
version/red hat 389 directory server/1.2.10-alpha8