CVE-2017-17740 : contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are ena

contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.

Published 2017-12-18 06:29:00

Updated 2022-06-13 19:10:10

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowDenial of service

Threat overview for CVE-2017-17740

Top countries where our scanners detected CVE-2017-17740

Top open port discovered on systems with this issue 389

IPs affected by CVE-2017-17740 907

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2017-17740!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2017-17740

Probability of exploitation activity in the next 30 days: 0.41%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 70 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2017-17740

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2017-17740

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-17740

https://www.oracle.com/security-alerts/cpuapr2022.html

Oracle Critical Patch Update Advisory - April 2022
Patch;Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00053.html

[security-announce] openSUSE-SU-2019:2157-1: moderate: Security update f
Mailing List;Third Party Advisory

CVEs referencing this url
http://www.openldap.org/its/index.cgi/Incoming?id=8759

OpenLDAP ITS - Incoming/8759
Issue Tracking;Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00058.html

[security-announce] openSUSE-SU-2019:2176-1: moderate: Security update f
Mailing List;Third Party Advisory

CVEs referencing this url
https://kc.mcafee.com/corporate/index?page=content&id=SB10365

Security Bulletin - Policy Auditor update fixes multiple vulnerabilities in third-party libraries (CVE-2016-0718, CVE-2016-4472, CVE-2016-5300, CVE-2017-17740, CVE-2017-9287, CVE-2019-13057, CVE-2020-
Third Party Advisory

CVEs referencing this url

Products affected by CVE-2017-17740