Computer Security
[EN] securityvulns.ru no-pyccku


OpenLDAP buffer overflow
Published:20.11.2011
Source:
SecurityVulns ID:12041
Type:remote
Threat Level:
5/10
Description:Off-by-one overflow on LDIF parsing.
Affected:OPENLDAP : OpenLDAP 2.4
CVE:CVE-2011-4079 (Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value in an LDIF entry.)
Original documentdocumentUBUNTU, [USN-1266-1] OpenLDAP vulnerability (20.11.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod