Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openldap openldap vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-5779
OpenLDAP prior to 2.3.29 allows remote malicious users to cause a denial of service (daemon crash) via LDAP BIND requests with long authcid names, which triggers an assertion failure.
Openldap Openldap
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 5.10
Canonical Ubuntu Linux 6.06
5
CVSSv2
CVE-2006-1470
OpenLDAP in Apple Mac OS X 10.4 up to 10.4.6 allows remote malicious users to cause a denial of service (crash) via an invalid LDAP request that triggers an assert error.
Apple Mac Os X 10.4.3
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.5
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.2
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.3
Apple Mac Os X 10.4.5
Apple Mac Os X 10.4.6
Apple Mac Os X Server 10.4.6
Apple Mac Os X 10.4
Apple Mac Os X Server 10.4
Apple Mac Os X Server 10.4.1
1 EDB exploit
5
CVSSv2
CVE-2006-2754
Stack-based buffer overflow in st.c in slurpd for OpenLDAP prior to 2.3.22 might allow malicious users to execute arbitrary code via a long hostname.
Openldap Openldap 2.2.14
Openldap Openldap 2.2.15
Openldap Openldap 2.2.16
Openldap Openldap 2.2.17
Openldap Openldap 2.2.11
Openldap Openldap 2.2.12
Openldap Openldap 2.2.13
Openldap Openldap 2.2.20
Openldap Openldap 2.2.21
Openldap Openldap 2.2.1
Openldap Openldap 2.2.18
Openldap Openldap 2.2.19
5
CVSSv2
CVE-2005-2069
pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and allows remote malicious users to sniff the password.
Padl Nss Ldap -
Padl Pam Ldap -
5
CVSSv2
CVE-2004-1880
Memory leak in the back-bdb backend for OpenLDAP 2.1.12 and previous versions allows remote malicious users to cause a denial of service (memory consumption).
Openldap Openldap 1.0
Openldap Openldap 1.1.1
Openldap Openldap 1.1.3
Openldap Openldap 1.2.0
Openldap Openldap 1.2.13
Openldap Openldap 1.2.3
Openldap Openldap 2.0.0
Openldap Openldap 2.0.10
Openldap Openldap 2.0.17
Openldap Openldap 2.0.19
Openldap Openldap 2.0.23
Openldap Openldap 1.0.1
Openldap Openldap 1.0.2
Openldap Openldap 1.0.3
Openldap Openldap 1.1.0
Openldap Openldap 1.2.5
Openldap Openldap 1.2.6
Openldap Openldap 1.2.7
Openldap Openldap 1.2.8
Openldap Openldap 2.0.2
Openldap Openldap 2.0.20
Openldap Openldap 2.0.21
5
CVSSv2
CVE-2003-1201
ldbm_back_exop_passwd in the back-ldbm backend in passwd.c for OpenLDAP 2.1.12 and previous versions, when the slap_passwd_parse function does not return LDAP_SUCCESS, attempts to free an uninitialized pointer, which allows remote malicious users to cause a denial of service (seg...
Openldap Openldap
5
CVSSv2
CVE-2001-0977
slapd in OpenLDAP 1.x prior to 1.2.12, and 2.x prior to 2.0.8, allows remote malicious users to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
Mandrakesoft Mandrake Single Network Firewall 7.2
Openldap Openldap 1.1.2
Openldap Openldap 1.1.3
Openldap Openldap 1.2.2
Openldap Openldap 1.2.3
Openldap Openldap 2.0.1
Openldap Openldap 2.0.2
Openldap Openldap 1.1
Openldap Openldap 1.1.1
Openldap Openldap 1.2.11
Openldap Openldap 1.2.12
Openldap Openldap 1.2.9
Openldap Openldap 2.0
Openldap Openldap 2.0.7
Openldap Openldap 1.0
Openldap Openldap 1.0.1
Openldap Openldap 1.1.4
Openldap Openldap 1.2
Openldap Openldap 1.2.4
Openldap Openldap 1.2.5
Openldap Openldap 2.0.3
Openldap Openldap 2.0.4
4.9
CVSSv2
CVE-2008-2330
slapconfig in Directory Services in Apple Mac OS X 10.5 up to and including 10.5.4 allows local users to select a readable output file into which the server password will be written by an OpenLDAP system administrator, related to the mkfifo function, aka an "insecure file op...
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.3
4.6
CVSSv2
CVE-2011-1024
chain.c in back-ldap in OpenLDAP 2.4.x prior to 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote authenticated users to bypass external-program authentication by sending an in...
Openldap Openldap 2.4.10
Openldap Openldap 2.4.6
Openldap Openldap 2.4.14
Openldap Openldap 2.4.15
Openldap Openldap 2.4.16
Openldap Openldap 2.4.22
Openldap Openldap 2.4.12
Openldap Openldap 2.4.13
Openldap Openldap 2.4.21
Openldap Openldap 2.4.23
Openldap Openldap 2.4.7
Openldap Openldap 2.4.8
Openldap Openldap 2.4.17
Openldap Openldap 2.4.18
Openldap Openldap 2.4.9
Openldap Openldap 2.4.11
Openldap Openldap 2.4.19
Openldap Openldap 2.4.20
4.6
CVSSv2
CVE-2007-0476
The gencert.sh script, when installing OpenLDAP prior to 2.1.30-r10, 2.2.x prior to 2.2.28-r7, and 2.3.x prior to 2.3.30-r2 as an ebuild in Gentoo Linux, does not create temporary directories in /tmp securely during emerge, which allows local users to overwrite arbitrary files vi...
Gentoo Linux 2.2.28
Gentoo Linux 2.3.30
Gentoo Linux 2.1.30
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »