Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/6903http://www.securityfocus.com/bid/3048http://www.cert.org/advisories/CA-2001-18.htmlhttp://www.kb.cert.org/vuls/id/869184http://www.ciac.org/ciac/bulletins/l-116.shtml
