Intrusion Prevention

OpenLDAP.slapd.Deref.Overlay.Null.Pointer.Dereference

Description

This indicates an attack attempt against a Denial of Service vulnerability in OpenLDAP.
The vulnerability is caused by an error when the vulnerable software handles a malicious LDAP message request. It allows a remote attacker to crash vulnerable systems via a crafted LDAP request.

Affected Products

OpenLDAP Foundation OpenLDAP prior to commit 7a5a98577a0481d864

Impact

Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.openwall.com/lists/oss-security/2015/02/07/3

CVE References

CVE-2015-1545