CVE-2009-0609 Information

Description

Sun Java System Directory Proxy Server in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3 when a JDBC data source is used does not properly handle (1) a long value in an ADD or (2) long string attributes which allows remote attackers to cause a denial of service (JDBC backend outage) via crafted LDAP requests.

Reference

http://secunia.com/advisories/33923 http://sunsolve.sun.com/search/document.do?assetkey=1-21-125276-08-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-251086-1 http://www.securityfocus.com/bid/33761