OpenLDAP.slapd.Nested.Filter.Stack.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in OpenLDAP Foundation OpenLDAP.
The vulnerability is due to improper handling of deeply nested filter in the filter.c. A remote attacker can exploit this vulnerability by sending a crafted SearchRequest message with a Filter that contains an abnormally large number of nested and or or filters. Successful exploitation will result in the slapd process running out of stack and terminating abnormally.
Affected Products
OpenLDAP Foundation OpenLDAP prior to 2.4.50
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_4/CHANGES
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |