Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:652196
HistoryJun 28, 2006 - 12:00 a.m.

Apple Mac OS X Open Directory server vulnerable to DoS via an invalid LDAP request

2006-06-2800:00:00
www.kb.cert.org
11

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.075 Low

EPSS

Percentile

94.1%

JSON

Overview

Apple has reported a vulnerability in their version of OpenLDAP that is included in Apple Mac OS X and Mac OS X Server versions 10.4 to 10.4.6. If successfully exploited, this vulnerability would allow an attacker to create a denial-of-service condition.

Description

OpenLDAP is a popular open-source implementation of the Lightweight Directory Access Protocol (LDAP). The software allows LDAP-aware programs on a network to get information from a server. Apple uses OpenLDAP as a part of their Open Directory product.

Apple reports that there is an assertion error in their implementation of OpenLDAP. An attacker may be able to exploit this vulnerability by sending a specially crafted invalid LDAP request to the server which triggers the assertion. The result of a successful attack would be a denial-of-service condition.

Only network access to the server is required to exploit this vulnerability.

Impact

A remote unauthenticated attacker may be able to create a denial-of-service condition.

Solution

Upgrade

Apply the upgrade provided by Apple. Refer to the Apple security updates in Mac OS X version 10.4.7 for more information.

Restrict Access

Restrict access to servers running affected versions of the software to trusted hosts or networks. Apple lists the LDAP ports used by their products as 389/tcp and 389/udp.

Vendor Information

652196

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Apple Computer, Inc. __ Affected

Updated: June 28, 2006

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Apple has released OS X version 10.4.7 to address this issue. See the Apple Mac OS X 10.4.7 update for details.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23652196 Feedback>).

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Apple Product Security for reporting this vulnerability. Apple, in turn, credits the Mu Security research team with reporting this issue to them.

This document was written by Ryan Giobbi.

Other Information

CVE IDs: CVE-2006-1470
Severity Metric: 0.22 Date Public:

Related

cve 1
checkpoint_advisories 1
prion 1
nessus 1
cve
cve
CVE-2006-1470
2006-06-27 22:13:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection agains Apple Open Directory Denial of Service Vulnerability
2006-07-19 00:00:00
prion
prion
Design/Logic Flaw
2006-06-27 22:13:00
nessus
nessus
Mac OS X 10.4.x < 10.4.7 Multiple Vulnerabilities
2006-06-28 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.075 Low

EPSS

Percentile

94.1%

JSON
Related for VU:652196
cve1checkpoint_advisories1prion1nessus1