A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a denial of service. The denial of service is triggered by a single message sent over a TCP connection, no bind or other authentication is required. The message triggers a segmentation fault that results in slapd crashing.
Name | Vendor | Start Version | End Version |
---|---|---|---|
389-ds-base | Port389 | 1.4.0 | 1.4.0 |