Check Point Advisories

Preemptive Protection against OpenLDAP BIND Denial of Service Vulnerability

Check Point Reference: CPAI-2006-136
Date Published: 21 Nov 2006
Severity: Medium
Last Updated: Thursday 03 May, 2007
Source: Secunia Advisory: SA22750
Industry Reference:CVE-2006-5779
Protection Provided by:
Who is Vulnerable? OpenLDAP version 2.2.29 and prior
Vulnerability Description A denial of service vulnerability exists in OpenLDAP. OpenLDAP Software is an open source implementation of the Lightweight Directory Access Protocol (LDAP). The vulnerability could be exploited by remote attackers to crash the service or execute arbitrary code via a specially crafted LDAP request to an affected LDAP server.
Vulnerability DetailsThe service fails to properly process certain BIND requests due to an error in the 'libldap/getdn.c' file. Remote attackers can exploit this by sending specially crafted BIND requests to a vulnerable OpenLDAP server and causing it to crash.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK