Openldap : Security Vulnerabilities, CVEs, Published In 2008 (Denial of service)
liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.
Max CVSS
5.0
EPSS Score
82.30%
Published
2008-07-01
Updated
2018-10-11
slapd/back-bdb/modrdn.c in the BDB backend for slapd in OpenLDAP 2.3.39 allows remote authenticated users to cause a denial of service (daemon crash) via a modrdn operation with a NOOP (LDAP_X_NO_OPERATION) control, a related issue to CVE-2007-6698.
Max CVSS
4.0
EPSS Score
0.73%
Published
2008-02-13
Updated
2018-10-15
The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability.
Max CVSS
4.0
EPSS Score
0.67%
Published
2008-02-01
Updated
2018-10-15
3 vulnerabilities found