Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : libldb-2.1.3-2.el8 (AXSA:2020-1023:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-1023:03 advisory. samba: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and pagedresults CVE-2020-10730 Tenable has extracted the...

6.5CVSS5.6AI score0.0244EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

MiracleLinux 7 : openldap-2.4.44-5.el7 (AXSA:2017-1911:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1911:01 advisory. OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing...

6.5CVSS6.9AI score0.07143EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 6 : openldap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openldap: incorrect multi-keyword mode cipherstring parsing CVE-2015-3276 -...

7.5CVSS7.1AI score0.07143EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.4 views

SUSE CVE-2017-9287

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0...

6.5CVSS8.6AI score0.07143EPSS
Exploits1References22
SUSE CVE
SUSE CVE
added 2023/02/15 4:0 a.m.4 views

SUSE CVE-2020-10700

A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service. This issue affects all samba versions before 4.10.15, before 4.11.8 and before...

5.3CVSS8.9AI score0.01968EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2021/03/11 12:0 a.m.4 views

The vulnerability of the Samba AD DC LDAP server, related to errors in processing the “Paged Results” and “ASQ” control elements, allows an attacker to cause a service failure.

The vulnerability of the Samba AD DC LDAP server is related to errors in processing the “Paged Results” and “ASQ” control elements. Exploiting this vulnerability can allow an attacker to cause service failures...

5.4CVSS6.8AI score0.01968EPSS
Exploits0References11Affected Software5
RedHat Linux
RedHat Linux
added 2020/11/04 1:5 a.m.1 views

samba: NULL pointer de-reference and use-after-free in Samba AD DC LDAP Server with ASQ, VLV and paged_results

A NULL pointer dereference, or possible use-after-free flaw was found in the Samba AD LDAP server. Although some versions of Samba shipped with Red Hat Enterprise Linux do not support Samba in AD mode, the affected code is shipped with the libldb package. This flaw allows an authenticated user to...

6.5CVSS7.4AI score0.0244EPSS
Exploits0References5
Samba
Samba
added 2020/07/02 12:0 a.m.53 views

LDAP Use-after-free in Samba AD DC Global Catalog with

Description Samba 4.5 and later implements VLV - Virtual List View, and Samba 4.10 and later reimplemented the pagedresults control using similar code. This code is more memory-efficient, storing only a pointer to the object, not the returned object. However this means parts of the original reque...

6.5CVSS7AI score0.02659EPSS
Exploits0
Veracode
Veracode
added 2020/05/10 11:27 p.m.30 views

Double Free

openldap is vulnerable to double free error. The servers/slapd/back-mdb/search.c in OpenLDAP is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0...

6.5CVSS0.9AI score0.07143EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2020/05/04 9:15 p.m.1 views

DEBIAN-CVE-2020-10700

A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service. This issue affects all samba versions before 4.10.15, before 4.11.8 and before...

5.3CVSS7AI score0.01968EPSS
Exploits0References1
OSV
OSV
added 2020/05/04 9:15 p.m.2 views

ALPINE-CVE-2020-10700

A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service. This issue affects all samba versions before 4.10.15, before 4.11.8 and before...

5.3CVSS6.6AI score0.01968EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/04/28 10:39 a.m.27 views

CVE-2020-10700

A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service. This issue affects all samba versions before 4.10.15, before 4.11.8 and before...

2.6CVSS1.1AI score0.01968EPSS
Exploits0References4
OSV
OSV
added 2020/04/28 12:0 a.m.2 views

UBUNTU-CVE-2020-10700

A use-after-free flaw was found in the way samba AD DC LDAP servers, handled 'Paged Results' control is combined with the 'ASQ' control. A malicious user in a samba AD could use this flaw to cause denial of service. This issue affects all samba versions before 4.10.15, before 4.11.8 and before...

5.3CVSS6.7AI score0.01968EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/01/28 12:0 a.m.20 views

Debian: Security Advisory (DLA-972-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.07143EPSS
Exploits1References2
Prion
Prion
added 2017/05/29 4:29 p.m.21 views

Double free

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0...

4CVSS6.8AI score0.07143EPSS
Exploits1References8Affected Software10
OSV
OSV
added 2017/05/29 4:29 p.m.3 views

ALPINE-CVE-2017-9287

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0...

6.5CVSS6.9AI score0.07143EPSS
Exploits1References1
OSV
OSV
added 2017/05/29 12:0 a.m.4 views

UBUNTU-CVE-2017-9287

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0...

6.5CVSS6.8AI score0.07143EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2016/02/17 12:0 a.m.32 views

RedHat Update for 389-ds-base RHSA-2016:0204-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.0399EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/17 12:0 a.m.33 views

Scientific Linux Security Update : 389-ds-base on SL7.x x86_64 (20160216)

An infinite-loop vulnerability was discovered in the 389 directory server, where the server failed to correctly handle unexpectedly closed client connections. A remote attacker able to connect to the server could use this flaw to make the directory server consume an excessive amount of CPU and st...

7.8CVSS7.4AI score0.0399EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/02/16 10:47 a.m.38 views

Important: Red Hat Security Advisory: 389-ds-base security and bug fix update

Updated 389-ds-base packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.8CVSS7.1AI score0.0399EPSS
Exploits0References6
Rows per page
Query Builder