Intrusion Prevention



This indicates an attack attempt against a Denial of Service vulnerability in OpenLDAP.
The vulnerability is caused by an error when the vulnerable software handles malicious ldap search requests. It allows a remote attacker to crash vulnerable systems via a crafted ldap search request.

Affected Products

OpenLDAP 2.4.36 and prior


Denial of Service: Remote attacker can crash vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

CVE References