CVE-2007-5707 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5707
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5707

Description: OpenLDAP before 2.3.39 allows remote attackers to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-551-1 SUSE http://www.novell.com/linux/security/advisories/2007_24_sr.html ST 1018924 SAID Secunia Advisory: SA27596 Secunia Advisory: SA27587 Secunia Advisory: SA27424 Secunia Advisory: SA27683 Secunia Advisory: SA27868 Secunia Advisory: SA27756 Secunia Advisory: SA29461 Secunia Advisory: SA29682 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1038.html http://www.redhat.com/support/errata/RHSA-2007-1037.html MLIST http://www.openldap.org/lists/openldap-announce/200710/msg00001.html MISC http://www.openldap.org/its/index.cgi/Software%20Bugs?id=5119 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:215 GENTOO http://security.gentoo.org/glsa/glsa-200803-28.xml FEDORA http://www.redhat.com/archives/fedora-package-announce/2007-November/msg00460.html DEBIAN http://www.debian.org/security/2008/dsa-1541 CONFIRM http://support.apple.com/kb/HT3937 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=440632 BID 26245 APPLE http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html

Return to the previous page.