Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5707

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2007-5707
Last Modified 07 Mar 2011 12:00:00
Published 30 Oct 2007 03:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5707

Summary

OpenLDAP before 2.3.39 allows remote attackers to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.

Vulnerable Systems

Application

  • Openldap 1.0

  • Openldap 1.0.1

  • Openldap 1.0.2

  • Openldap 1.0.3

  • Openldap 1.1

  • Openldap 1.1.0

  • Openldap 1.1.1

  • Openldap 1.1.2

  • Openldap 1.1.3

  • Openldap 1.1.4

  • Openldap 1.2

  • Openldap 1.2.0

  • Openldap 1.2.1

  • Openldap 1.2.10

  • Openldap 1.2.11

  • Openldap 1.2.12

  • Openldap 1.2.13

  • Openldap 1.2.2

  • Openldap 1.2.3

  • Openldap 1.2.4

  • Openldap 1.2.5

  • Openldap 1.2.6

  • Openldap 1.2.7

  • Openldap 1.2.8

  • Openldap 1.2.9

  • Openldap 2.0

  • Openldap 2.0.0

  • Openldap 2.0.1

  • Openldap 2.0.10

  • Openldap 2.0.11

  • Openldap 2.0.11 11

  • Openldap 2.0.11 11s

  • Openldap 2.0.11 9

  • Openldap 2.0.12

  • Openldap 2.0.13

  • Openldap 2.0.14

  • Openldap 2.0.15

  • Openldap 2.0.16

  • Openldap 2.0.17

  • Openldap 2.0.18

  • Openldap 2.0.19

  • Openldap 2.0.2

  • Openldap 2.0.20

  • Openldap 2.0.21

  • Openldap 2.0.22

  • Openldap 2.0.23

  • Openldap 2.0.24

  • Openldap 2.0.25

  • Openldap 2.0.26

  • Openldap 2.0.27

  • Openldap 2.0.3

  • Openldap 2.0.4

  • Openldap 2.0.5

  • Openldap 2.0.6

  • Openldap 2.0.7

  • Openldap 2.0.8

  • Openldap 2.0.9

  • Openldap 2.1 .20

  • Openldap 2.1.10

  • Openldap 2.1.11

  • Openldap 2.1.12

  • Openldap 2.1.13

  • Openldap 2.1.14

  • Openldap 2.1.15

  • Openldap 2.1.16

  • Openldap 2.1.17

  • Openldap 2.1.18

  • Openldap 2.1.19

  • Openldap 2.1.2

  • Openldap 2.1.20

  • Openldap 2.1.21

  • Openldap 2.1.22

  • Openldap 2.1.23

  • Openldap 2.1.24

  • Openldap 2.1.25

  • Openldap 2.1.26

  • Openldap 2.1.27

  • Openldap 2.1.28

  • Openldap 2.1.29

  • Openldap 2.1.3

  • Openldap 2.1.30

  • Openldap 2.1.4

  • Openldap 2.1.5

  • Openldap 2.1.6

  • Openldap 2.1.7

  • Openldap 2.1.8

  • Openldap 2.1.9

  • Openldap 2.2.0

  • Openldap 2.2.1

  • Openldap 2.2.10

  • Openldap 2.2.11

  • Openldap 2.2.12

  • Openldap 2.2.13

  • Openldap 2.2.14

  • Openldap 2.2.15

  • Openldap 2.2.16

  • Openldap 2.2.17

  • Openldap 2.2.18

  • Openldap 2.2.19

  • Openldap 2.2.20

  • Openldap 2.2.21

  • Openldap 2.2.22

  • Openldap 2.2.23

  • Openldap 2.2.24

  • Openldap 2.2.25

  • Openldap 2.2.26

  • Openldap 2.2.27

  • Openldap 2.2.28 R2

  • Openldap 2.2.29 Rev 1.134

  • Openldap 2.2.4

  • Openldap 2.2.5

  • Openldap 2.2.6

  • Openldap 2.2.7

  • Openldap 2.2.8

  • Openldap 2.2.9

  • Openldap 2.3.27 2.20061018

  • Openldap 2.3.28 2.20061022

  • Openldap 2.3.28 20061022

  • Openldap 2.3.28 E1.0.0


References

BID - 26245

MLIST - [openldap-announce] 20071026 OpenLDAP 2.3.39 available

SECUNIA - 27424

VUPEN - ADV-2009-3184

VUPEN - ADV-2007-3645

UBUNTU - USN-551-1

SECTRACK - 1018924

REDHAT - RHSA-2007:1038

REDHAT - RHSA-2007:1037

FEDORA - FEDORA-2007-741

MISC - http://www.openldap.org/its/index.cgi/Software%20Bugs?id=5119

SUSE - SUSE-SR:2007:024

MANDRIVA - MDKSA-2007:215

DEBIAN - DSA-1541

CONFIRM - http://support.apple.com/kb/HT3937

GENTOO - GLSA-200803-28

SECUNIA - 29682

SECUNIA - 29461

SECUNIA - 27868

SECUNIA - 27756

SECUNIA - 27683

SECUNIA - 27596

SECUNIA - 27587

APPLE - APPLE-SA-2009-11-09-1

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=440632

BID - 26245


Last Updated: 27 May 2016 11:02:31