PADL 'nss_ldap' Race Condition Security Vulnerability

Bugtraq ID: 26452
Class: Race Condition Error
CVE: CVE-2007-5794
Remote: Yes
Local: No
Published: Nov 15 2007 12:00AM
Updated: Aug 25 2008 11:15PM
Credit: Josh Burley discovered this issue.
Vulnerable: SuSE SUSE Linux Enterprise Server 8
+ Linux kernel 2.4.21
+ Linux kernel 2.4.19
SuSE SUSE Linux Enterprise Server 10 SP1
SuSE SUSE Linux Enterprise SDK 10 SP1
SuSE SUSE Linux Enterprise Desktop 10 SP1
S.u.S.E. UnitedLinux 1.0
S.u.S.E. SuSE Linux Standard Server 8.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SuSE Linux Openexchange Server 4.0
S.u.S.E. openSUSE 10.3
S.u.S.E. openSUSE 10.2
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux POS 9
S.u.S.E. Novell Linux Desktop 9
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 10.SP1
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux 10.1 x86-64
S.u.S.E. Linux 10.1 x86
S.u.S.E. Linux 10.1 ppc
S.u.S.E. Linux 10.0 x86-64
S.u.S.E. Linux 10.0 x86
S.u.S.E. Linux 10.0 ppc
rPath rPath Linux 1
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux 5 server
RedHat Desktop 4.0
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux AS 4
Padl Software nss_ldap Build 258
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0
Padl Software nss_ldap Build 220
+ Ubuntu Ubuntu Linux 5.0 4 powerpc
+ Ubuntu Ubuntu Linux 5.0 4 i386
+ Ubuntu Ubuntu Linux 5.0 4 amd64
Padl Software nss_ldap Build 211
+ Ubuntu Ubuntu Linux 4.1 ppc
+ Ubuntu Ubuntu Linux 4.1 ia64
+ Ubuntu Ubuntu Linux 4.1 ia32
Padl Software nss_ldap Build 202
+ MandrakeSoft Single Network Firewall 7.2
+ Mandriva Linux Mandrake 9.0
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
+ Mandriva Linux Mandrake 8.1 ia64
+ Mandriva Linux Mandrake 8.1
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0
+ Mandriva Linux Mandrake 7.2
Padl Software nss_ldap Build 199
Padl Software nss_ldap Build 198
Padl Software nss_ldap Build 194
+ Mandriva Linux Mandrake 9.0
Padl Software nss_ldap Build 192
Padl Software nss_ldap Build 191
Padl Software nss_ldap Build 190
Padl Software nss_ldap Build 189
Padl Software nss_ldap Build 188
Padl Software nss_ldap Build 187
Padl Software nss_ldap Build 186
Padl Software nss_ldap Build 185.3
Padl Software nss_ldap Build 185.2
Padl Software nss_ldap Build 185.1
Padl Software nss_ldap Build 185
Padl Software nss_ldap Build 184
Padl Software nss_ldap Build 183
Padl Software nss_ldap Build 181
Padl Software nss_ldap Build 180
Padl Software nss_ldap Build 173
+ Mandriva Linux Mandrake 8.2 ppc
+ Mandriva Linux Mandrake 8.2
Padl Software nss_ldap Build 172
Padl Software nss_ldap Build 122
+ MandrakeSoft Single Network Firewall 7.2
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.1
+ Mandriva Linux Mandrake 7.0
+ Mandriva Linux Mandrake 7.0
Padl Software nss_ldap Build 121
Padl Software nss_ldap Build 113
+ RedHat Linux 7.0
Padl Software nss_ldap Build 107
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0
Padl Software nss_ldap Build 105
+ RedHat Linux 6.2 sparc
+ RedHat Linux 6.2 i386
+ RedHat Linux 6.2 i386
+ RedHat Linux 6.2 alpha
+ RedHat Linux 6.2 alpha
Mandriva Linux Mandrake 2007.0 x86_64
Mandriva Linux Mandrake 2007.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
Gentoo Linux
Foresight Linux Foresight Linux 1.1
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Avaya Proactive Contact 4.0
Avaya Messaging Storage Server MSS 3.0
Avaya Message Networking MN 3.1
Avaya Communication Manager 4.0
Avaya Aura SIP Enablement Services 5.0
Avaya Aura Application Enablement Services 4.0.1
Avaya Aura Application Enablement Services 3.1.5
Avaya Aura Application Enablement Services 3.1.4
Avaya Aura Application Enablement Services 3.1.3
Avaya Aura Application Enablement Services 4.1
Avaya Aura Application Enablement Services 3.0
Avaya AES 4.2
Avaya AES 4.0
Avaya AES 3.1
Not Vulnerable: Padl Software nss_ldap Build 259
+ Mandriva Linux Mandrake 8.0 ppc
+ Mandriva Linux Mandrake 8.0


 

Privacy Statement
Copyright 2010, SecurityFocus