Threat Center Security News OpenLDAP modrdn DoS
OpenLDAP modrdn DoS Print E-mail
Written by Rebecca Mints   
Saturday, 16 February 2008 06:16
DESCRIPTION: A vulnerability has been reported in OpenLDAP, which can be exploited by malicious users to cause a DoS (Denial of Service).


The vulnerability is caused due to an error within the implementation of modrdn operations. This can be exploited to crash the slapd daemon via a modrdn operation with a NOOP control.

This is related to vulnerability #3 in: SA27424 The vulnerability is reported in version 2.3.39. Other versions may also be affected.

SOLUTION: Fixed in CVS repository.

Reference:  http://www.secuobs.com/secumail/snsecumail/msg09416.shtml

 

WTW Threat Level