VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Feb 17, 2009· Updated Apr 23, 2026

CVE-2009-0609

CVE-2009-0609

Description

Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3, when a JDBC data source is used, does not properly handle (1) a long value in an ADD or (2) long string attributes, which allows remote attackers to cause a denial of service (JDBC backend outage) via crafted LDAP requests.

Affected products

4
  • Sun Corporation/Java System Directory Server4 versions
    cpe:2.3:a:sun:java_system_directory_server:6.0:enterprise:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:sun:java_system_directory_server:6.0:enterprise:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_directory_server:6.1:enterprise:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_directory_server:6.2:enterprise:*:*:*:*:*:*
    • cpe:2.3:a:sun:java_system_directory_server:6.3:enterprise:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.