[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-0211Date: (C)2010-07-28   (M)2024-02-22


The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize function, which allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a modrdn call with an RDN string containing invalid UTF-8 sequences, which triggers a free of an invalid, uninitialized pointer in the slap_mods_free function, as demonstrated using the Codenomicon LDAPv3 test suite.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : 9.8CVSS Score : 5.0
Exploit Score: 3.9Exploit Score: 10.0
Impact Score: 5.9Impact Score: 2.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: NETWORKAccess Vector: NETWORK
Attack Complexity: LOWAccess Complexity: LOW
Privileges Required: NONEAuthentication: NONE
User Interaction: NONEConfidentiality: NONE
Scope: UNCHANGEDIntegrity: NONE
Confidentiality: HIGHAvailability: PARTIAL
Integrity: HIGH 
Availability: HIGH 
  
Reference:
SECTRACK-1024221
http://www.securityfocus.com/archive/1/515545/100/0/threaded
SECUNIA-40639
SECUNIA-40677
SECUNIA-40687
BID-41770
SECUNIA-42787
ADV-2010-1849
ADV-2010-1858
ADV-2011-0025
APPLE-SA-2010-11-10-1
GLSA-201406-36
RHSA-2010:0542
RHSA-2010:0543
SUSE-SR:2010:014
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://support.apple.com/kb/HT4435
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570
http://www.vmware.com/security/advisories/VMSA-2011-0001.html

CWE    1
CWE-252
OVAL    13
oval:org.secpod.oval:def:700084
oval:org.secpod.oval:def:100618
oval:org.secpod.oval:def:300229
oval:org.secpod.oval:def:4729
...

© SecPod Technologies