Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openldap openldap 1.2.7 vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2000-0748
OpenLDAP 1.2.11 and previous versions improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse.
Openldap Openldap 1.2.10
Openldap Openldap 1.2.7
Openldap Openldap 1.2.8
Openldap Openldap 1.2.9
Openldap Openldap 1.2.11
445
VMScore
CVE-2001-0977
slapd in OpenLDAP 1.x prior to 1.2.12, and 2.x prior to 2.0.8, allows remote malicious users to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
Mandrakesoft Mandrake Single Network Firewall 7.2
Openldap Openldap 1.1.2
Openldap Openldap 1.1.3
Openldap Openldap 1.2.2
Openldap Openldap 1.2.3
Openldap Openldap 2.0.1
Openldap Openldap 2.0.2
Openldap Openldap 1.1
Openldap Openldap 1.1.1
Openldap Openldap 1.2.11
Openldap Openldap 1.2.12
Openldap Openldap 1.2.9
Openldap Openldap 2.0
Openldap Openldap 2.0.7
Openldap Openldap 1.0
Openldap Openldap 1.0.1
Openldap Openldap 1.1.4
Openldap Openldap 1.2
Openldap Openldap 1.2.4
Openldap Openldap 1.2.5
Openldap Openldap 2.0.3
Openldap Openldap 2.0.4
215
VMScore
CVE-2000-0336
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack.
Openldap Openldap 1.2.8
Openldap Openldap 1.2.9
Openldap Openldap 1.2.7
Openldap Openldap 1.2.10
Mandrakesoft Mandrake Linux 6.1
Mandrakesoft Mandrake Linux 7.0
Redhat Linux 6.1
Redhat Linux 6.2
Turbolinux Turbolinux 6.0.2
Turbolinux Turbolinux 4.2
Turbolinux Turbolinux 4.4
1 EDB exploit
445
VMScore
CVE-2004-1880
Memory leak in the back-bdb backend for OpenLDAP 2.1.12 and previous versions allows remote malicious users to cause a denial of service (memory consumption).
Openldap Openldap 1.0
Openldap Openldap 1.1.1
Openldap Openldap 1.1.3
Openldap Openldap 1.2.0
Openldap Openldap 1.2.13
Openldap Openldap 1.2.3
Openldap Openldap 2.0.0
Openldap Openldap 2.0.10
Openldap Openldap 2.0.17
Openldap Openldap 2.0.19
Openldap Openldap 2.0.23
Openldap Openldap 1.0.1
Openldap Openldap 1.0.2
Openldap Openldap 1.0.3
Openldap Openldap 1.1.0
Openldap Openldap 1.2.5
Openldap Openldap 1.2.6
Openldap Openldap 1.2.7
Openldap Openldap 1.2.8
Openldap Openldap 2.0.2
Openldap Openldap 2.0.20
Openldap Openldap 2.0.21
668
VMScore
CVE-2004-0823
OpenLDAP 1.0 up to and including 2.1.19, as used in Apple Mac OS 10.3.4 and 10.3.5 and possibly other operating systems, may allow certain authentication schemes to use hashed (crypt) passwords in the userPassword attribute as if they were plaintext passwords, which allows remote...
Openldap Openldap 1.1
Openldap Openldap 1.1.1
Openldap Openldap 1.2.12
Openldap Openldap 1.2.13
Openldap Openldap 1.2.8
Openldap Openldap 1.2.9
Openldap Openldap 1.0
Openldap Openldap 1.0.1
Openldap Openldap 1.1.4
Openldap Openldap 1.2
Openldap Openldap 1.2.4
Openldap Openldap 1.2.5
Openldap Openldap 2.0.10
Openldap Openldap 2.0.11
Openldap Openldap 2.0.15
Openldap Openldap 2.0.16
Openldap Openldap 2.0.17
Openldap Openldap 2.0.23
Openldap Openldap 2.0.25
Openldap Openldap 2.0.8
Openldap Openldap 2.0.9
Openldap Openldap 2.1.17
633
VMScore
CVE-2007-5707
OpenLDAP prior to 2.3.39 allows remote malicious users to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.
Openldap Openldap 2.0.2
Openldap Openldap 2.0.11 11
Openldap Openldap 2.1.15
Openldap Openldap 2.1.10
Openldap Openldap 2.3.28 2.20061022
Openldap Openldap 2.2.4
Openldap Openldap 2.2.22
Openldap Openldap 2.1.29
Openldap Openldap 2.2.18
Openldap Openldap 2.1.9
Openldap Openldap 1.2.6
Openldap Openldap 1.1.2
Openldap Openldap 2.0.22
Openldap Openldap 2.0.9
Openldap Openldap 2.2.0
Openldap Openldap 2.1.19
Openldap Openldap 1.0
Openldap Openldap 2.2.29 Rev 1.134
Openldap Openldap 1.2.7
Openldap Openldap 2.2.12
Openldap Openldap 2.2.20
Openldap Openldap 2.0.15
633
VMScore
CVE-2007-5708
slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP prior to 2.3.39, when running as a proxy-caching server, allocates memory using a malloc variant instead of calloc, which prevents an array from being initialized properly and might allow malicious users to cause a denial of s...
Openldap Openldap 1.1.1
Openldap Openldap 1.1.3
Openldap Openldap 1.2.12
Openldap Openldap 1.2.2
Openldap Openldap 1.2.7
Openldap Openldap 1.2.9
Openldap Openldap 2.0.0
Openldap Openldap 2.0.11 11s
Openldap Openldap 2.0.12
Openldap Openldap 2.0.19
Openldap Openldap 2.0.20
Openldap Openldap 2.0.25
Openldap Openldap 2.0.27
Openldap Openldap 2.0.4
Openldap Openldap 2.0.9
Openldap Openldap 2.1.11
Openldap Openldap 2.1.18
Openldap Openldap 2.1.2
Openldap Openldap 1.2
Openldap Openldap 1.2.0
Openldap Openldap 1.2.1
Openldap Openldap 1.2.10
515
VMScore
CVE-2006-6493
Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and previous versions, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote malicious users to execute arbitrary code via an LDAP bind request using t...
Openldap Openldap 1.0.3
Openldap Openldap 1.1
Openldap Openldap 1.1.0
Openldap Openldap 1.2.1
Openldap Openldap 1.2.10
Openldap Openldap 1.2.5
Openldap Openldap 1.2.6
Openldap Openldap 2.0.11
Openldap Openldap 2.0.11 11
Openldap Openldap 2.0.16
Openldap Openldap 2.0.17
Openldap Openldap 2.0.23
Openldap Openldap 2.0.24
Openldap Openldap 2.0.7
Openldap Openldap 2.0.8
Openldap Openldap 2.1.15
Openldap Openldap 2.1.16
Openldap Openldap 2.1.22
Openldap Openldap 2.1.23
Openldap Openldap 2.1.30
Openldap Openldap 2.1.4
Openldap Openldap 2.2.0
1 EDB exploit
357
VMScore
CVE-2011-4079
Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and previous versions allows remote malicious users to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddress...
Openldap Openldap 2.0.2
Openldap Openldap 2.0.11 11
Openldap Openldap 2.1.15
Openldap Openldap 2.1.10
Openldap Openldap 2.3.5
Openldap Openldap 2.2.4
Openldap Openldap 2.2.22
Openldap Openldap 2.3.31
Openldap Openldap 2.3.42
Openldap Openldap 2.1.29
Openldap Openldap 2.2.18
Openldap Openldap 2.1.9
Openldap Openldap 1.2.6
Openldap Openldap 1.1.2
Openldap Openldap 2.0.22
Openldap Openldap 2.4.17
Openldap Openldap 2.4.6
Openldap Openldap 2.0.9
Openldap Openldap 2.2.0
Openldap Openldap 2.3.32
Openldap Openldap 2.1.19
Openldap Openldap 1.0
445
VMScore
CVE-2009-1417
gnutls-cli in GnuTLS prior to 2.6.6 does not verify the activation and expiration times of X.509 certificates, which allows remote malicious users to successfully present a certificate that is (1) not yet valid or (2) no longer valid, related to lack of time checks in the _gnutls...
Gnu Gnutls 1.0.22
Gnu Gnutls 1.0.23
Gnu Gnutls 1.0.24
Gnu Gnutls 1.1.21
Gnu Gnutls 1.1.20
Gnu Gnutls 1.1.15
Gnu Gnutls 1.0.25
Gnu Gnutls 1.2.3
Gnu Gnutls 1.2.2
Gnu Gnutls 1.3.4
Gnu Gnutls 1.2.7
Gnu Gnutls 1.5.0
Gnu Gnutls 1.4.4
Gnu Gnutls 1.6.2
Gnu Gnutls 1.5.5
Gnu Gnutls 1.7.14
Gnu Gnutls 1.7.15
Gnu Gnutls 1.0.18
Gnu Gnutls 1.0.19
Gnu Gnutls 1.1.19
Gnu Gnutls 1.1.16
Gnu Gnutls 1.2.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started