CVE-2006-5779 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-5779
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-5779

Description: OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via LDAP BIND requests with long authcid names, which triggers an assertion failure.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30076 UBUNTU http://www.ubuntu.com/usn/usn-384-1 TRUSTIX http://www.trustix.org/errata/2006/0066/ SUSE http://www.novell.com/linux/security/advisories/2006_72_openldap2.html ST 1017166 SREASON http://securityreason.com/securityalert/1831 SAID Secunia Advisory: SA23170 Secunia Advisory: SA23152 Secunia Advisory: SA23125 Secunia Advisory: SA23133 Secunia Advisory: SA22996 Secunia Advisory: SA22750 Secunia Advisory: SA22953 OPENPKG http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.033-openldap.html MISC http://gleg.net/downloads/VULNDISCO_META_FREE.tar.gz http://gleg.net/vulndisco_meta.shtml MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:208 GENTOO http://security.gentoo.org/glsa/glsa-200611-25.xml CONFIRM http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4740 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/450728/100/0/threaded BID 20939

Return to the previous page.