5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.108 Low
EPSS
Percentile
95.0%
Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c
in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compiled with the
βenable-kbind (Kerberos KBIND) option, allows remote attackers to execute
arbitrary code via an LDAP bind request using the LDAP_AUTH_KRBV41
authentication method and long credential data.