header-logo
Suggest Exploit
vendor:
OpenLDAP
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: OpenLDAP
Affected Version From: 2.3.39
Affected Version To: 2.3.39
Patch Exists: Yes
Related CWE: CVE-2007-6698
CPE: a:openldap:openldap
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2007

OpenLDAP Remote Denial of Service Vulnerability

OpenLDAP is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to deny service to legitimate users. Attackers use readily available LDAP commands to exploit this issue.

Mitigation:

Ensure that all OpenLDAP installations are up to date with the latest version.
Source

Exploit-DB raw data:

Attackers use readily available LDAP commands to exploit this issue.



source: https://www.securityfocus.com/bid/27778/info

OpenLDAP is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to deny service to legitimate users.

OpenLDAP 2.3.39 is vulnerable to this issue; other versions may also be affected.

This issue is related to one described in BID 26245 (OpenLDAP Multiple Remote Denial of Service Vulnerabilities), identified by CVE-2007-6698.

ldapmodrdn -x -h :389 -D <dn> -w <pw> -e \noop ou=test,dc=my-domain,dc=com ou=test2