CVE-2007-6698
openldap: slapd crash on NOOP control operation on entry in bdb storage
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The BDB backend for slapd in OpenLDAP before 2.3.36 allows remote authenticated users to cause a denial of service (crash) via a potentially-successful modify operation with the NOOP control set to critical, possibly due to a double free vulnerability.
El backend de BDB para slapd en OpenLDAP versiones anteriores a 2.3.36, permite a los usuarios autenticados remotos causar una denegación de servicio (bloqueo) por medio de una operación de modificación potencialmente con éxito con el control NOOP establecido en crítico, posiblemente debido a una vulnerabilidad de doble liberación.
Jonathan Clarke discovered that the OpenLDAP slapd server did not properly handle modify requests when using the Berkeley DB backend and the NOOP control was used. An authenticated user with modify permissions could send a crafted modify request and cause a denial of service via application crash. Ubuntu 7.10 is not affected by this issue. Ralf Haferkamp discovered that the OpenLDAP slapd server did not properly handle modrdn requests when using the Berkeley DB backend and the NOOP control was used. An authenticated user with modrdn permissions could send a crafted modrdn request and possibly cause a denial of service via application crash.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-02-01 CVE Reserved
- 2008-02-01 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
CAPEC
References (26)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/29256 | Third Party Advisory | |
| http://support.apple.com/kb/HT3937 | X_refsource_confirm |
|
| http://wiki.rpath.com/Advisories:rPSA-2008-0059 | X_refsource_confirm | |
| http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0059 | X_refsource_confirm | |
| http://www.openldap.org/lists/openldap-bugs/200704/msg00067.html | Mailing List | |
| http://www.openldap.org/lists/openldap-bugs/200704/msg00068.html | Mailing List | |
| http://www.securityfocus.com/archive/1/488242/100/200/threaded | Mailing List | |
| http://www.securityfocus.com/bid/26245 | Vdb Entry | |
| http://www.securitytracker.com/id?1019480 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10748 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html | 2018-10-15 | |
| http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html | 2018-10-15 | |
| http://secunia.com/advisories/28817 | 2018-10-15 | |
| http://secunia.com/advisories/28953 | 2018-10-15 | |
| http://secunia.com/advisories/29068 | 2018-10-15 | |
| http://secunia.com/advisories/29225 | 2018-10-15 | |
| http://secunia.com/advisories/29682 | 2018-10-15 | |
| http://secunia.com/advisories/29957 | 2018-10-15 | |
| http://www.debian.org/security/2008/dsa-1541 | 2018-10-15 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2008:058 | 2018-10-15 | |
| http://www.redhat.com/support/errata/RHSA-2008-0110.html | 2018-10-15 | |
| http://www.ubuntu.com/usn/usn-584-1 | 2018-10-15 | |
| http://www.vupen.com/english/advisories/2009/3184 | 2018-10-15 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=431203 | 2008-02-21 | |
| https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00105.html | 2018-10-15 | |
| https://access.redhat.com/security/cve/CVE-2007-6698 | 2008-02-21 |