CVE-2001-1307

Name of the Vulnerable Software and Affected Versions: iPlanet Directory Server versions 4.1.4 and earlier

Description: The issue is related to buffer overflows in the LDAP component, which can be exploited by remote attackers to cause a denial of service, potentially leading to a crash, and possibly allowing the execution of arbitrary code. This has been demonstrated using the PROTOS LDAPv3 test suite.

Recommendations: For iPlanet Directory Server versions 4.1.4 and earlier, consider applying configuration changes to restrict access to the LDAP component until a fix is available. As a temporary workaround, restrict access to the LDAP service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.