CVE Vulnerabilities

CVE-2007-6698

Published: Feb 01, 2008 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability.

Affected Software

Name Vendor Start Version End Version
Openldap Openldap * 2.3.35 (including)
Openldap2 Ubuntu dapper *
Openldap2 Ubuntu devel *
Openldap2 Ubuntu edgy *
Openldap2 Ubuntu feisty *
Openldap2 Ubuntu gutsy *
Openldap2.2 Ubuntu dapper *
Openldap2.2 Ubuntu edgy *
Openldap2.3 Ubuntu feisty *
Openldap2.3 Ubuntu gutsy *
Red Hat Enterprise Linux 4 RedHat openldap-0:2.2.13-8.el4_6.4 *
Red Hat Enterprise Linux 5 RedHat openldap-0:2.3.27-8.el5_1.3 *

References