5 matches found
389-ds-base: 389-ds-base: unbounded LDAP controls count in get_ldapmessage_controls_ext() causes CPU and heap amplification (remote DoS)
A flaw was found in 389-ds-base. The getldapmessagecontrolsext function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated attacker can send a specially crafted LDAP request containing hundreds of thousands of minimal controls...
EUVD-2020-3176
Malware in sbrugna...
EUVD-2025-6692
Malicious code in bioql PyPI...
CVE-2025-2487
A flaw was found in the 389-ds-base LDAP Server. This issue occurs when issuing a Modify DN LDAP operation through the ldap protocol, when the function return value is not tested and a NULL pointer is dereferenced. If a privileged user performs a ldap MODDN operation after a failed operation, it...
The vulnerability of the LDAP server of the Samba networking software allows a hacker to remove the DNS-Host-Name attribute from any object in the directory.
The vulnerability of the LDAP server AD DC in the Samba networking software package is related to the incorrect assignment of permissions for a critical resource. Exploiting this vulnerability could allow an attacker to remove the DNS-Host-Name attribute from any object in the directory...