Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The setup scripts in 389 Directory Server 1.2.x (aka Red Hat Directory Server 8.2.x), when multiple unprivileged instances are configured, use 0777 permissions for the /var/run/dirsrv directory, which allows local users to cause a denial of service (daemon outage or arbitrary process termination) by replacing PID files contained in this directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat 389 Directory Server本地拒绝服务漏洞
Vulnerability Description
Red Hat 389 Directory Server(前称Fedora Directory Server)是美国红帽(Red Hat)公司的一款企业级的Linux目录服务器。该服务器完全支持LDAPv3规范,具有可扩展、多主复制等特点。 当配置多个无特权实例时,389 Directory Server 1.2.x版本(又名Red Hat Directory Server 8.2.x版本)对/var/run/dirsrv目录使用了0777权限。本地用户可以通过替换包含在此目录中的PID文件导致拒绝服务(
CVSS Information
N/A
Vulnerability Type
N/A