CVE-2001-0977
https://notcve.org/view.php?id=CVE-2001-0977
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000417 http://www.cert.org/advisories/CA-2001-18.html http://www.debian.org/security/2001/dsa-068 http://www.kb.cert.org/vuls/id/935800 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-069.php3 http://www.osvdb.org/1905 http://www.redhat.com/support/errata/RHSA-2001-098.html http://www.securityfocus.com/bid/3049 https://exchange.xforce.ibmcloud.com/vulnerabilities/6904 •
CVE-2000-0748
https://notcve.org/view.php?id=CVE-2000-0748
OpenLDAP 1.2.11 and earlier improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0375.html http://www.securityfocus.com/bid/1511 •
CVE-2000-0336 – OpenLDAP 1.2.7/1.2.8/1.2.9/1.2.10 - '/usr/tmp/' Symlink
https://notcve.org/view.php?id=CVE-2000-0336
Linux OpenLDAP server allows local users to modify arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/19946 ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-2000-009.0.txt http://www.redhat.com/support/errata/RHSA-2000-012.html http://www.securityfocus.com/bid/1232 http://www.turbolinux.com/pipermail/tl-security-announce/2000-May/000009.html •