header-logo
Suggest Exploit
vendor:
OpenLDAP
by:
5.5
CVSS
MEDIUM
Denial-of-Service
CWE
Product Name: OpenLDAP
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

OpenLDAP Remote Denial-of-Service Vulnerability

The OpenLDAP server is vulnerable to a remote denial-of-service attack. The vulnerability is triggered by sending a specially crafted 'modify relative distinguished name' (modrdn) command. Attackers can exploit this vulnerability to crash the 'slapd' server, causing a denial of service for legitimate users.

Mitigation:

No known mitigation at this time.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/46831/info

OpenLDAP is prone to a remote denial-of-service vulnerability that affects the 'modify relative distinguished name' (modrdn) command.

Attackers can exploit this issue to deny service to legitimate users by crashing affected 'slapd' servers. 

ldapmodrdn -x -H ldap://ldapserver -r '' o=test

Navigation

Suggest Exploit

Services By CQR