OpenLDAP.slapd.Search.Parsing.serialNumberAndIssuerCheck.DoS
Description
This indicates an attack attempt to exploit a Denial of Service Vulnerability in OpenLDAP Foundation OpenLDAP.
The vulnerability is due to improper input validation in controls in LDAP search requests. A remote attacker can exploit these vulnerabilities by sending a crafted query to the target OpenLDAP server. Successful exploitation could cause integer underflow which lead to denial of service condition.
Affected Products
OpenLDAP Foundation OpenLDAP prior to 2.4.57
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://bugs.openldap.org/show_bug.cgi?id=9404
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-10-07 | 18.173 | Sig Added |
2021-07-08 | 18.116 | Default_action:pass:drop |
2021-06-29 | 18.106 |