OpenLDAP.Ldapsearch.PageSize.Double.Free.DoS

description-logoDescription

This indicates an attack attempt against a Denial of Service vulnerability in OpenLDAP.
The vulnerability is caused by an error when the vulnerable software handles malicious ldap search requests. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system, via a crafted ldap search request.

affected-products-logoAffected Products

OpenLDAP Foundation OpenLDAP prior to 2.4.45

Impact logoImpact

Denial of Service: Remote attacker can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.openldap.org/devel/gitweb.cgi?p=openldap.git;a=commit;h=0cee1ffb6021b1aae3fcc9581699da1c85a6dd6e

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-11-01 13.483 Sig Added