Teamware Information for VU#688960
Teamware Office contains multiple vulnerabilities in LDAP handling code
- Vendor Information Help Date Notified: 09 May 2001
- Statement Date:
- Date Updated: 16 Jul 2001
An issue has been discovered with Teamware Office Enterprise Directory (LDAP server) that shows a abnormal termination or loop when the LDAP server encounters a maliciously or incorrectly created LDAP request data.
If the maliciously formatted LDAP request data is requested, the LDAP server may excessively copy the LDAP request data to the stack area.
This overflow is likely to cause execution of malicious code. In other case, the LDAP server may go into abnormal termination or infinite loop.
The vendor has not provided us with any further information regarding this vulnerability.
Teamware has provided additional documentation of these issues in their "Teamware Solution Database", available at:
Registered users can find information on these vulnerabilities by searching for document #010703-0000 for Windows NT or document #010703-0001 for Solaris.