Lucene search
HistoryJan 02, 2003 - 5:00 a.m.
CVE-2002-1379
openldap
arbitrary code execution
.ldaprc file
security vulnerability
nvd
cve-2002-1379
7.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.8%
OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openldap:openldap | openldap | le | 2.2.0 |
Related
debian
debian
openvas
openvas
Debian Security Advisory DSA 227-1 (openldap2)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-227)
2008-01-17 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : openldap (MDKSA-2003:006)
2004-07-31 00:00:00
Debian DSA-227-1 : openldap2 - buffer overflows and other bugs
2004-09-29 00:00:00
RHEL 2.1 : openldap (RHSA-2002:312)
2004-07-06 00:00:00
redhat
redhat
(RHSA-2002:312) openldap security update
2003-02-07 00:00:00
osv
osv
openldap2 - buffer overflows and other bugs
2003-01-13 00:00:00
suse
suse
remote command execution in OpenLDAP2
2002-12-06 11:16:45
7.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.8%
Related for CVE-2002-1379