Incorrect handling of an invalid value for an HTTP request parameter by Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and previous versions, 3.0 before Patch Update 12, and 4.0 before Patch Update 2 causes a null pointer dereference (CWE-476) and subsequent denial of service due to process termination.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microfocus enterprise developer 2.3 |
||
microfocus enterprise server 2.3 |
||
microfocus enterprise server |
||
microfocus enterprise developer 4.0 |
||
microfocus enterprise server 4.0 |
||
microfocus enterprise developer 3.0 |
||
microfocus enterprise server 3.0 |
||
microfocus enterprise developer |