The acllas__handle_group_entry function in servers/plugins/acl/acllas.c in 389 Directory Server prior to 1.2.10 does not properly handled access control instructions (ACIs) that use certificate groups, which allows remote authenticated LDAP users with a certificate group to cause a denial of service (infinite loop and CPU consumption) by binding to the server.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
fedoraproject 389 directory server 1.2.6 |
||
fedoraproject 389 directory server 1.2.6.1 |
||
fedoraproject 389 directory server 1.2.8 |
||
fedoraproject 389 directory server 1.2.7.5 |
||
fedoraproject 389 directory server 1.2.1 |
||
fedoraproject 389 directory server 1.2.7 |
||
fedoraproject 389 directory server 1.2.2 |
||
fedoraproject 389 directory server 1.2.5 |
||
fedoraproject 389 directory server |
||
fedoraproject 389 directory server 1.2.8.2 |
||
fedoraproject 389 directory server 1.2.8.3 |
||
fedoraproject 389 directory server 1.2.9.9 |
||
fedoraproject 389 directory server 1.2.10 |
||
fedoraproject 389 directory server 1.2.3 |
||
fedoraproject 389 directory server 1.2.8.1 |
Vulmon