Computer Security
[EN] securityvulns.ru no-pyccku


OpenLDAP DoS
Published:07.04.2014
Source:
SecurityVulns ID:13672
Type:remote
Threat Level:
5/10
Description:Resources exhaustion.
Affected:OPENLDAP : OpenLDAP 2.4
CVE:CVE-2013-4449 (The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service (slapd crash) by unbinding immediately after a search request, which triggers rwm_conn_destroy to free the session context while it is being used by rwm_op_search.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:026 ] openldap (07.04.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod