CVE-2006-0710

Published: Feb 15, 2006Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Double free vulnerability in isode.eddy in Isode M-Vault Server 11.3 allows remote attackers to execute arbitrary code via a crafted LDAP request, as demonstrated by ProtoVer Sample LDAP.

Affected (1)

Products: Isode: M Vault Server

Isode

1 product

M Vault Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Isode M Vault Server	Version 11.3

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (10)

http://lists.immunitysec.com/pipermail/dailydave/2006-February/002925.html

Source: cve@mitre.org

http://secunia.com/advisories/18818

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/16635

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2006/0567

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/24700

Source: cve@mitre.org

http://lists.immunitysec.com/pipermail/dailydave/2006-February/002925.html