Format string vulnerability in the logging() function in C-Note Squid LDAP authentication module (squid_auth_LDAP) 2.0.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code by triggering log messages.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Squid_auth_ldap | C-note | 1.0.1 (including) | 1.0.1 (including) |
| Squid_auth_ldap | C-note | 1.0.2_beta (including) | 1.0.2_beta (including) |
| Squid_auth_ldap | C-note | 1.2_b2 (including) | 1.2_b2 (including) |
| Squid_auth_ldap | C-note | 2.0 (including) | 2.0 (including) |
| Nss_ldap | Padl_software | build_180 (including) | build_180 (including) |
| Nss_ldap | Padl_software | build_181 (including) | build_181 (including) |
| Nss_ldap | Padl_software | build_183 (including) | build_183 (including) |
| Nss_ldap | Padl_software | build_184 (including) | build_184 (including) |
| Nss_ldap | Padl_software | build_185 (including) | build_185 (including) |
| Nss_ldap | Padl_software | build_185.1 (including) | build_185.1 (including) |
| Nss_ldap | Padl_software | build_185.2 (including) | build_185.2 (including) |
| Nss_ldap | Padl_software | build_185.3 (including) | build_185.3 (including) |
| Nss_ldap | Padl_software | build_186 (including) | build_186 (including) |
| Nss_ldap | Padl_software | build_187 (including) | build_187 (including) |
| Nss_ldap | Padl_software | build_188 (including) | build_188 (including) |
| Nss_ldap | Padl_software | build_189 (including) | build_189 (including) |
| Pam_ldap | Padl_software | build_143 (including) | build_143 (including) |