OpenLDAP Denial of Service Vulnerabilities

The Lightweight Directory Access Protocol (LDAP) is designed to be a lightweight access protocol for directory services supporting X.500 models. It offers a means of searching, fetching and manipulating directory content.

Several input validation errors have been found to exist in OpenLDAP. The problems were discovered using the PROTOS project's LDAPv3 test suite. The problems enable remote attackers to cause an affected OpenLDAP server to crash, resulting in a denial of service condition.

Further technical details are not available at this time.


Privacy Statement
Copyright 2010, SecurityFocus