389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
389_directory_server | Fedoraproject | 1.3.5.0 (including) | 1.3.5.17 (excluding) |
389_directory_server | Fedoraproject | 1.3.6.0 (including) | 1.3.6.10 (excluding) |