openldap

2006-11-23

Page content

Author: voroskoi
Vulnerable: 2.3.27-1
Unaffected: 2.3.29-1siwenna1

Evgeny Legerov has reported a vulnerability in OpenLDAP, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error when processing certain BIND requests. This can be exploited to cause a crash by sending specially crafted BIND requests to an OpenLDAP server.

Bug Tracker URL: http://bugs.frugalware.org/task/1459

CVEs:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5779