Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 LDAP:ORACLE-PREAUTH-DOS

Severity

 Medium

Recommended

 No

Recommended Action

 Drop

Category

 LDAP

Keywords

 Oracle Internet Directory Pre-Authentication LDAP Denial of Service

Release Date

 2010/10/11

Update Number

 1789

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

LDAP: Oracle Internet Directory Pre-Authentication LDAP Denial of Service


This signature detects attempts to exploit a known vulnerability against Oracle Internet Directory. A successful attack can result in a denial-of-service condition.

Extended Description

Oracle has released the July 2008 Critical Patch Update that addresses 44 new vulnerabilities affecting the following products: Oracle Database Oracle TimesTen In-Memory Database Oracle Application Server Oracle E-Business Suite and Application Oracle Enterprise Manager Oracle PeopleSoft Enterprise Oracle BEA Products

Affected Products

  • BEA Systems Weblogic Server 10.0
  • BEA Systems Weblogic Server 10.0 MP1
  • BEA Systems Weblogic Server 6.1.0
  • BEA Systems Weblogic Server 6.1.0 SP 1
  • BEA Systems Weblogic Server 6.1.0 SP 2
  • BEA Systems Weblogic Server 6.1.0 SP 3
  • BEA Systems Weblogic Server 6.1.0 SP 4
  • BEA Systems Weblogic Server 6.1.0 SP 5
  • BEA Systems Weblogic Server 6.1.0 SP 7
  • BEA Systems Weblogic Server 7.0.0 SP 1
  • BEA Systems Weblogic Server 7.0.0 SP 2
  • BEA Systems Weblogic Server 7.0.0 SP 3
  • BEA Systems Weblogic Server 7.0.0 SP 4
  • BEA Systems Weblogic Server 7.0.0 SP 5
  • BEA Systems Weblogic Server 7.0.0 SP 6
  • BEA Systems Weblogic Server 7.0.0 SP 7
  • BEA Systems Weblogic Server 8.1.0 SP 1
  • BEA Systems Weblogic Server 8.1.0 SP 2
  • BEA Systems Weblogic Server 8.1.0 SP 3
  • BEA Systems Weblogic Server 8.1.0 SP 4
  • BEA Systems Weblogic Server 8.1.0 SP 5
  • BEA Systems Weblogic Server 8.1.0 SP 6
  • BEA Systems Weblogic Server 9.0
  • BEA Systems Weblogic Server 9.2
  • BEA Systems Weblogic Server 9.2 Maintenance Pack 3
  • HP Oracle for OpenView 10g
  • HP Oracle for OpenView 10gR2
  • HP Oracle for OpenView 8.1.7
  • HP Oracle for OpenView 9.1.01
  • HP Oracle for OpenView 9.2
  • HP Oracle for OpenView for Linux LTU
  • HP Oracle for OpenView for Linux LTU Service Bureaus
  • Oracle E-Business Suite 11i 11.5.10.2
  • Oracle E-Business Suite 12 12.0.4
  • Oracle Enterprise Manager Database Control 10g 10.1.0.5
  • Oracle Enterprise Manager Database Control 10g 10.2.0.2
  • Oracle Enterprise Manager Database Control 10g 10.2.0.3
  • Oracle Enterprise Manager Database Control 10g 10.2.0.4
  • Oracle Enterprise Manager Database Control 11i 11.1.0.6
  • Oracle Enterprise Manager Grid Control 10g 10.1.0 .5
  • Oracle Enterprise Manager Grid Control 10g 10.1.0 6
  • Oracle Hyperion BI Plus 9.2.0.3
  • Oracle Hyperion BI Plus 9.2.1.0
  • Oracle Hyperion BI Plus 9.3.1.0
  • Oracle Hyperion Performance Suite 8.3.2.4
  • Oracle Hyperion Performance Suite 8.5.0.3
  • Oracle Oracle10g Application Server 10.1.2
  • Oracle Oracle10g Application Server 10.1.2.3.0
  • Oracle Oracle10g Application Server 10.1.3 .1.0
  • Oracle Oracle10g Application Server 10.1.3 .3.0
  • Oracle Oracle10g Application Server 9.0.4 3
  • Oracle Oracle10g Enterprise Edition 10.1.0 .5
  • Oracle Oracle10g Enterprise Edition 10.2.0 .2
  • Oracle Oracle10g Enterprise Edition 10.2.0 .3
  • Oracle Oracle10g Enterprise Edition 10.2.0.4
  • Oracle Oracle10g Personal Edition 10.1.0.5
  • Oracle Oracle10g Personal Edition 10.2.0 .2
  • Oracle Oracle10g Personal Edition 10.2.0 .3
  • Oracle Oracle10g Personal Edition 10.2.0.4
  • Oracle Oracle10g Standard Edition 10.1.0 .5
  • Oracle Oracle10g Standard Edition 10.2.0 .2
  • Oracle Oracle10g Standard Edition 10.2.0 .3
  • Oracle Oracle10g Standard Edition 10.2.0.4
  • Oracle Oracle11g Enterprise Edition 11.1.0 6
  • Oracle Oracle11g Standard Edition 11.1.0 6
  • Oracle Oracle11g Standard Edition One 11.1.0 6
  • Oracle Oracle9i Application Server 1.0.2 .2
  • Oracle Oracle9i Enterprise Edition 9.0.1 .5 FIPS
  • Oracle Oracle9i Enterprise Edition 9.2.0.8.0
  • Oracle Oracle9i Enterprise Edition 9.2.0 .8DV
  • Oracle Oracle9i Personal Edition 9.0.1 .5 FIPS
  • Oracle Oracle9i Personal Edition 9.2.0 .8
  • Oracle Oracle9i Personal Edition 9.2.0 .8DV
  • Oracle Oracle9i Standard Edition 9.0.1 .5 FIPS
  • Oracle Oracle9i Standard Edition 9.2.0.8
  • Oracle Oracle9i Standard Edition 9.2.0 .8DV
  • Oracle PeopleSoft Enterprise Customer Relationship Manage 8.9
  • Oracle PeopleSoft Enterprise Customer Relationship Manage 9.0
  • Oracle PeopleSoft Enterprise PeopleTools 8.48.18
  • Oracle PeopleSoft Enterprise PeopleTools 8.49.12
  • Oracle TimesTen In-Memory Database 7.0.3.0.0

References

  • BugTraq: 30177
  • CVE: CVE-2008-2595

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out