Public Date:
787014: CVE-2012-0833 389: denial of service when using certificate groups

The MITRE CVE dictionary describes this issue as:

The acllas__handle_group_entry function in servers/plugins/acl/acllas.c in 389 Directory Server before 1.2.10 does not properly handled access control instructions (ACIs) that use certificate groups, which allows remote authenticated LDAP users with a certificate group to cause a denial of service (infinite loop and CPU consumption) by binding to the server.

Find out more about CVE-2012-0833 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v2 metrics

Base Score 1.4
Base Metrics AV:A/AC:H/Au:S/C:N/I:N/A:P
Access Vector Adjacent Network
Access Complexity High
Authentication Single
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (389-ds-base) RHSA-2012:0813 2012-06-19
Red Hat Directory Server 8 (for RHEL 5 Server) (adminutil) RHSA-2013:0549 2013-02-21

Affected Packages State

Platform Package State
Red Hat Directory Server 8 Directory Server Will not fix


Red Hat would like to thank Graham Leggett for reporting this issue.

Last Modified

CVE description copyright © 2017, The MITRE Corporation