Published: 07/09/2006 Updated: 17/10/2018

CVSS v2 Base Score: 2.3 | Impact Score: 2.9 | Exploitability Score: 4.4

VMScore: 205

Vector: AV:A/AC:M/Au:S/C:N/I:P/A:N

Subscribe to Openldap

slapd in OpenLDAP prior to 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify arbitrary Distinguished Names (DN).

Vulnerable Product	Search on Vulmon	Subscribe to Product
openldap openldap 2.0.20
openldap openldap 2.0.23
openldap openldap 2.0.24
openldap openldap 2.0.21
openldap openldap 2.0.22

NVD-CWE-Other http://www.openldap.org/lists/openldap-announce/200608/msg00000.html http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4587 http://www.openldap.org/software/release/changes.html http://www.securityfocus.com/bid/19832 http://secunia.com/advisories/21721 http://securitytracker.com/id?1016783 https://issues.rpath.com/browse/RPL-667 http://www.mandriva.com/security/advisories?name=MDKSA-2006:171 http://secunia.com/advisories/22273 http://secunia.com/advisories/22219 http://www.redhat.com/support/errata/RHSA-2007-0310.html http://secunia.com/advisories/25098 http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html http://support.avaya.com/elmodocs2/security/ASA-2007-232.htm http://security.gentoo.org/glsa/glsa-200711-23.xml http://www.redhat.com/support/errata/RHSA-2007-0430.html ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc http://www.trustix.org/errata/2006/0055 http://secunia.com/advisories/25628 http://secunia.com/advisories/25676 http://secunia.com/advisories/22300 http://secunia.com/advisories/25894 http://secunia.com/advisories/26909 http://secunia.com/advisories/27706 http://www.vupen.com/english/advisories/2007/2186 http://www.vupen.com/english/advisories/2007/3229 https://exchange.xforce.ibmcloud.com/vulnerabilities/28772 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9618 http://www.securityfocus.com/archive/1/447395/100/200/threaded https://nvd.nist.gov

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook