Intrusion Prevention



This indicates an attack attempt against a memory-corruption vulnerability in OpenLDAP.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted string via modrdn. It allows a remote attacker to execute arbitrary code.

Affected Products

OpenLDAP 2.4.22 and prior versions


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to OpenLDAP version 2.4.23:

CVE References

CVE-2010-0212 CVE-2010-0211