Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openldap openldap vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-3767
libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle maliciou...
Openldap Openldap
Apple Mac Os X
Fedoraproject Fedora 11
5
CVSSv2
CVE-2009-1417
gnutls-cli in GnuTLS prior to 2.6.6 does not verify the activation and expiration times of X.509 certificates, which allows remote malicious users to successfully present a certificate that is (1) not yet valid or (2) no longer valid, related to lack of time checks in the _gnutls...
Gnu Gnutls 2.3.5
Gnu Gnutls 1.6.0
Gnu Gnutls 2.0.0
Gnu Gnutls 1.5.0
Gnu Gnutls 1.2.8
Gnu Gnutls 1.1.14
Gnu Gnutls 2.3.4
Gnu Gnutls 1.7.3
Gnu Gnutls 1.4.1
Gnu Gnutls 1.4.3
Gnu Gnutls 2.6.1
Gnu Gnutls 1.2.11
Gnu Gnutls 1.1.21
Gnu Gnutls 1.7.5
Gnu Gnutls 1.7.11
Gnu Gnutls 1.0.20
Gnu Gnutls 1.2.5
Gnu Gnutls 2.2.4
Gnu Gnutls 1.0.17
Gnu Gnutls 1.2.4
Gnu Gnutls 1.3.1
Gnu Gnutls 1.0.24
4.9
CVSSv2
CVE-2008-2330
slapconfig in Directory Services in Apple Mac OS X 10.5 up to and including 10.5.4 allows local users to select a readable output file into which the server password will be written by an OpenLDAP system administrator, related to the mkfifo function, aka an "insecure file op...
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.5
2.1
CVSSv2
CVE-2008-3539
Unspecified vulnerability in HP OpenView Select Identity (HPSI) Connectors on Windows, as used in HPSI Active Directory Connector 2.30 and previous versions, HPSI SunOne Connector 1.14 and previous versions, HPSI eDirectory Connector 1.12 and previous versions, HPSI eTrust Connec...
Hp Hpsi Acf2 Connector
Hp Hpsi Active Directory Connector
Hp Hpsi Bidir Dirx Connector
Hp Hpsi Edirectory Connector
Hp Hpsi Etrust Connector
Hp Hpsi Oid Connector
Hp Hpsi Openldap Connector
Hp Hpsi Racf Connector
Hp Hpsi Sunone Connector
Hp Hpsi Topsecret Connector
Hp Ibm Tivoli Dir Connector
5
CVSSv2
CVE-2008-2952
liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote malicious users to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.
Openldap Openldap 2.3.5
Openldap Openldap 2.2.4
Openldap Openldap 2.3.31
Openldap Openldap 2.3.42
Openldap Openldap 2.3.32
Openldap Openldap 2.3.41
Openldap Openldap 2.3.17
Openldap Openldap 2.3.12
Openldap Openldap 2.2.9
Openldap Openldap 2.3.8
Openldap Openldap 2.3.27
Openldap Openldap 2.3.36
Openldap Openldap 2.3.39
Openldap Openldap 2.3.43
Openldap Openldap 2.3.20
Openldap Openldap 2.3.40
Openldap Openldap 2.3.13
Openldap Openldap 2.3.38
Openldap Openldap 2.3.14
Openldap Openldap 2.2.7
Openldap Openldap 2.3.10
Openldap Openldap 2.3.26
1 EDB exploit
4
CVSSv2
CVE-2008-0658
slapd/back-bdb/modrdn.c in the BDB backend for slapd in OpenLDAP 2.3.39 allows remote authenticated users to cause a denial of service (daemon crash) via a modrdn operation with a NOOP (LDAP_X_NO_OPERATION) control, a related issue to CVE-2007-6698.
Openldap Openldap 2.3.39
4
CVSSv2
CVE-2007-6698
The BDB backend for slapd in OpenLDAP prior to 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability.
Openldap Openldap
7.1
CVSSv2
CVE-2007-5707
OpenLDAP prior to 2.3.39 allows remote malicious users to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.
Openldap Openldap 2.0.2
Openldap Openldap 2.0.11 11
Openldap Openldap 2.1.15
Openldap Openldap 2.1.10
Openldap Openldap 2.3.28 2.20061022
Openldap Openldap 2.2.4
Openldap Openldap 2.2.22
Openldap Openldap 2.1.29
Openldap Openldap 2.2.18
Openldap Openldap 2.1.9
Openldap Openldap 1.2.6
Openldap Openldap 1.1.2
Openldap Openldap 2.0.22
Openldap Openldap 2.0.9
Openldap Openldap 2.2.0
Openldap Openldap 2.1.19
Openldap Openldap 1.0
Openldap Openldap 2.2.29 Rev 1.134
Openldap Openldap 1.2.7
Openldap Openldap 2.2.12
Openldap Openldap 2.2.20
Openldap Openldap 2.0.15
7.1
CVSSv2
CVE-2007-5708
slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP prior to 2.3.39, when running as a proxy-caching server, allocates memory using a malloc variant instead of calloc, which prevents an array from being initialized properly and might allow malicious users to cause a denial of s...
Openldap Openldap 2.0.2
Openldap Openldap 2.0.11 11
Openldap Openldap 2.1.15
Openldap Openldap 2.1.10
Openldap Openldap 2.3.28 2.20061022
Openldap Openldap 2.2.4
Openldap Openldap 2.2.22
Openldap Openldap 2.1.29
Openldap Openldap 2.2.18
Openldap Openldap 2.1.9
Openldap Openldap 1.2.6
Openldap Openldap 1.1.2
Openldap Openldap 2.0.22
Openldap Openldap 2.0.9
Openldap Openldap 2.2.0
Openldap Openldap 2.1.19
Openldap Openldap 1.0
Openldap Openldap 2.2.29 Rev 1.134
Openldap Openldap 1.2.7
Openldap Openldap 2.2.12
Openldap Openldap 2.2.20
Openldap Openldap 2.0.15
4.6
CVSSv2
CVE-2007-0476
The gencert.sh script, when installing OpenLDAP prior to 2.1.30-r10, 2.2.x prior to 2.2.28-r7, and 2.3.x prior to 2.3.30-r2 as an ebuild in Gentoo Linux, does not create temporary directories in /tmp securely during emerge, which allows local users to overwrite arbitrary files vi...
Gentoo Linux 2.1.30
Gentoo Linux 2.3.30
Gentoo Linux 2.2.28
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »