Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2001-0977

Published: 16/07/2001 Updated: 10/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Mandrake Single Network Firewall

Vulnerability Summary

slapd in OpenLDAP 1.x prior to 1.2.12, and 2.x prior to 2.0.8, allows remote malicious users to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.

Vulnerable Product Search on Vulmon Subscribe to Product

mandrakesoft mandrake single network firewall 7.2

openldap openldap 1.1.2

openldap openldap 1.1.3

openldap openldap 1.2.2

openldap openldap 1.2.3

openldap openldap 2.0.1

openldap openldap 2.0.2

openldap openldap 1.1

openldap openldap 1.1.1

openldap openldap 1.2.11

openldap openldap 1.2.12

openldap openldap 1.2.9

openldap openldap 2.0

openldap openldap 2.0.7

openldap openldap 1.0

openldap openldap 1.0.1

openldap openldap 1.1.4

openldap openldap 1.2

openldap openldap 1.2.4

openldap openldap 1.2.5

openldap openldap 2.0.3

openldap openldap 2.0.4

openldap openldap 1.0.2

openldap openldap 1.0.3

openldap openldap 1.2.1

openldap openldap 1.2.10

openldap openldap 1.2.6

openldap openldap 1.2.7

openldap openldap 1.2.8

openldap openldap 2.0.5

openldap openldap 2.0.6

debian debian linux 2.2

mandrakesoft mandrake linux 7.1

redhat linux 7.0

redhat linux 7.1

mandrakesoft mandrake linux 7.2

mandrakesoft mandrake linux 8.0

mandrakesoft mandrake linux corporate server 1.0.1

redhat linux 6.2

Vendor Advisories

Debian Security Advisories: DSA-068-1 openldap -- remote DoS
The CERT advisory lists a number of vulnerabilities in various LDAP implementations, based on the results of the PROTOS LDAPv3 test suite These tests found one problem in OpenLDAP, a free LDAP implementation which is shipped as part of Debian GNU/Linux 22 The problem is that slapd did not handle packets which had BER fields of invalid length and ...

References

NVD-CWE-Otherhttp://www.cert.org/advisories/CA-2001-18.htmlhttp://www.kb.cert.org/vuls/id/935800http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-069.php3http://www.securityfocus.com/bid/3049http://www.debian.org/security/2001/dsa-068http://www.redhat.com/support/errata/RHSA-2001-098.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000417http://www.osvdb.org/1905https://exchange.xforce.ibmcloud.com/vulnerabilities/6904https://nvd.nist.govhttps://www.debian.org/security/./dsa-068https://www.kb.cert.org/vuls/id/935800
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook