Vulnerability-Lookup

CVE-2007-3224 (GCVE-0-2007-3224)

Vulnerability from cvelistv5 – Published: 2007-06-14 23:00 – Updated: 2024-08-07 14:05

Summary

Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

7 references

URL	Tags
https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
http://www.vupen.com/english/advisories/2007/2189	vdb-entryx_refsource_VUPEN
http://sunsolve.sun.com/search/document.do?assetk…	vendor-advisoryx_refsource_SUNALERT
http://www.securitytracker.com/id?1018254	vdb-entryx_refsource_SECTRACK
http://osvdb.org/37247	vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/25666	third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/24467	vdb-entryx_refsource_BID

Date Public

2007-06-13 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T14:05:29.329Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "sun-java-unspecified-information-disclosure(34858)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
          },
          {
            "name": "ADV-2007-2189",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/2189"
          },
          {
            "name": "102876",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUNALERT",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
          },
          {
            "name": "1018254",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1018254"
          },
          {
            "name": "37247",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/37247"
          },
          {
            "name": "25666",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/25666"
          },
          {
            "name": "24467",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/24467"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-06-13T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "sun-java-unspecified-information-disclosure(34858)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
        },
        {
          "name": "ADV-2007-2189",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/2189"
        },
        {
          "name": "102876",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUNALERT"
          ],
          "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
        },
        {
          "name": "1018254",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1018254"
        },
        {
          "name": "37247",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/37247"
        },
        {
          "name": "25666",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/25666"
        },
        {
          "name": "24467",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/24467"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-3224",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "sun-java-unspecified-information-disclosure(34858)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
            },
            {
              "name": "ADV-2007-2189",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/2189"
            },
            {
              "name": "102876",
              "refsource": "SUNALERT",
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
            },
            {
              "name": "1018254",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1018254"
            },
            {
              "name": "37247",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/37247"
            },
            {
              "name": "25666",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/25666"
            },
            {
              "name": "24467",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/24467"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-3224",
    "datePublished": "2007-06-14T23:00:00.000Z",
    "dateReserved": "2007-06-14T00:00:00.000Z",
    "dateUpdated": "2024-08-07T14:05:29.329Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2007-3224",
      "date": "2026-05-30",
      "epss": "0.0077",
      "percentile": "0.73837"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*\", \"matchCriteriaId\": \"BE6D70A5-A2AE-4142-86C7-A3D15C155801\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F64D5A0-9BED-497F-9C90-B4F404A699A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*\", \"matchCriteriaId\": \"92E44A06-2535-4841-8191-9B27B03A42CF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*\", \"matchCriteriaId\": \"A2AAC3E9-6B8A-48DC-A135-715F94F078F6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EBB854A-6951-4CA7-87BB-919B56F88ECB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E73C928E-92A5-4B61-BA90-56EABD6E7A73\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad no especificada en Sun ONE/Java System Directory Server (slapd) 6.0, y 5.x anterior a 5.2 Parche 5, permite a atacantes remotos en determinar la existencia de atributos de una entrada a trav\\u00e9s de vectores no especificados.\"}]",
      "id": "CVE-2007-3224",
      "lastModified": "2024-11-21T00:32:42.220",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-06-14T23:30:00.000",
      "references": "[{\"url\": \"http://osvdb.org/37247\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25666\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/24467\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securitytracker.com/id?1018254\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/2189\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/34858\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://osvdb.org/37247\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25666\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/24467\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securitytracker.com/id?1018254\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/2189\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/34858\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-3224\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-06-14T23:30:00.000\",\"lastModified\":\"2026-04-23T00:35:47.467\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en Sun ONE/Java System Directory Server (slapd) 6.0, y 5.x anterior a 5.2 Parche 5, permite a atacantes remotos en determinar la existencia de atributos de una entrada a trav\u00e9s de vectores no especificados.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE6D70A5-A2AE-4142-86C7-A3D15C155801\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F64D5A0-9BED-497F-9C90-B4F404A699A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*\",\"matchCriteriaId\":\"92E44A06-2535-4841-8191-9B27B03A42CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*\",\"matchCriteriaId\":\"A2AAC3E9-6B8A-48DC-A135-715F94F078F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EBB854A-6951-4CA7-87BB-919B56F88ECB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E73C928E-92A5-4B61-BA90-56EABD6E7A73\"}]}]}],\"references\":[{\"url\":\"http://osvdb.org/37247\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25666\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/24467\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securitytracker.com/id?1018254\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2189\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34858\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://osvdb.org/37247\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25666\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/24467\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securitytracker.com/id?1018254\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2189\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/34858\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTA-2012-AVI-015

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités dans Bluecoat PolicyCenter permettent de réaliser un déni de service à distance ainsi que des élévations de privilèges.

Description

Bluecoat PolicyCenter installe une version vulnérable (5.2) de Sun Directory Server. Les failles concernant cette version de logiciel permettent de réaliser un déni de service à distance, ou d'obtenir des droits en lecture et en écriture sur certains fichiers, notamment ceux de configuration.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Toutes les versions de Bluecoat PolicyCenter antérieures à 8.7.2 sont vulnérables. Les versions 8.7.2 et ultérieures le sont également si Sun Directory Server est utilisé en version 5.2.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

CERTA-2012-AVI-015

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités dans Bluecoat PolicyCenter permettent de réaliser un déni de service à distance ainsi que des élévations de privilèges.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Toutes les versions de Bluecoat PolicyCenter antérieures à 8.7.2 sont vulnérables. Les versions 8.7.2 et ultérieures le sont également si Sun Directory Server est utilisé en version 5.2.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

FKIE_CVE-2007-3224

Vulnerability from fkie_nvd - Published: 2007-06-14 23:30 - Updated: 2026-04-23 00:35

Severity

Summary

References

URL	Tags
cve@mitre.org	http://osvdb.org/37247
cve@mitre.org	http://secunia.com/advisories/25666	Vendor Advisory
cve@mitre.org	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1
cve@mitre.org	http://www.securityfocus.com/bid/24467	Patch
cve@mitre.org	http://www.securitytracker.com/id?1018254
cve@mitre.org	http://www.vupen.com/english/advisories/2007/2189
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/34858
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/37247
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25666	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/24467	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1018254
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/2189
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/34858

Impacted products

Vendor	Product	Version
sun	java_system_directory_server	5.2
sun	java_system_directory_server	5.2
sun	java_system_directory_server	5.2
sun	java_system_directory_server	5.2
sun	java_system_directory_server	5.2
sun	java_system_directory_server	6.0
sun	one_directory_server	5.1
sun	one_directory_server	5.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "083E8ACF-7A6B-4C7C-B1E1-1567D09A8E4B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*",
              "matchCriteriaId": "BE6D70A5-A2AE-4142-86C7-A3D15C155801",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*",
              "matchCriteriaId": "5F64D5A0-9BED-497F-9C90-B4F404A699A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*",
              "matchCriteriaId": "1C4F9948-4A6A-4C68-8CDA-AF34ACA12D5F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*",
              "matchCriteriaId": "92E44A06-2535-4841-8191-9B27B03A42CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "A2AAC3E9-6B8A-48DC-A135-715F94F078F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8EBB854A-6951-4CA7-87BB-919B56F88ECB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E73C928E-92A5-4B61-BA90-56EABD6E7A73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en Sun ONE/Java System Directory Server (slapd) 6.0, y 5.x anterior a 5.2 Parche 5, permite a atacantes remotos en determinar la existencia de atributos de una entrada a trav\u00e9s de vectores no especificados."
    }
  ],
  "id": "CVE-2007-3224",
  "lastModified": "2026-04-23T00:35:47.467",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-06-14T23:30:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/37247"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/25666"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/24467"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1018254"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/2189"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/37247"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/25666"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/24467"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1018254"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/2189"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-5GCG-PG3J-C96G

Vulnerability from github – Published: 2022-05-01 18:11 – Updated: 2022-05-01 18:11

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-3224"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-06-14T23:30:00Z",
    "severity": "MODERATE"
  },
  "details": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.",
  "id": "GHSA-5gcg-pg3j-c96g",
  "modified": "2022-05-01T18:11:32Z",
  "published": "2022-05-01T18:11:32Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3224"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/37247"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25666"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/24467"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1018254"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/2189"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-3224

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-3224

Aliases

CVE-2007-3224

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-3224",
    "description": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.",
    "id": "GSD-2007-3224"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-3224"
      ],
      "details": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors.",
      "id": "GSD-2007-3224",
      "modified": "2023-12-13T01:21:41.810313Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-3224",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "sun-java-unspecified-information-disclosure(34858)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
          },
          {
            "name": "ADV-2007-2189",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/2189"
          },
          {
            "name": "102876",
            "refsource": "SUNALERT",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
          },
          {
            "name": "1018254",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1018254"
          },
          {
            "name": "37247",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/37247"
          },
          {
            "name": "25666",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25666"
          },
          {
            "name": "24467",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/24467"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:5.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:5.2:2003q4:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:5.2:2004q2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:5.2:2005q4:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:one_directory_server:5.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sun:one_directory_server:5.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-3224"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Sun ONE/Java System Directory Server (slapd) 6.0, and 5.x before 5.2 Patch 5, allows remote attackers to determine the existence of attributes of an entry via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "102876",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102876-1"
            },
            {
              "name": "24467",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/24467"
            },
            {
              "name": "25666",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/25666"
            },
            {
              "name": "1018254",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1018254"
            },
            {
              "name": "37247",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/37247"
            },
            {
              "name": "ADV-2007-2189",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/2189"
            },
            {
              "name": "sun-java-unspecified-information-disclosure(34858)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34858"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-07-29T01:32Z",
      "publishedDate": "2007-06-14T23:30Z"
    }
  }
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-3224 (GCVE-0-2007-3224)

CERTA-2012-AVI-015

Description

Solution

CERTA-2012-AVI-015

Description

Solution

FKIE_CVE-2007-3224

GHSA-5GCG-PG3J-C96G

GSD-2007-3224

Tags

Sightings

Nomenclature