CVE-2010-0211

2010-07-2800:00:00

ubuntu.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.796 High

EPSS

Percentile

98.2%

JSON

The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check
the return value of a call to the smr_normalize function, which allows
remote attackers to cause a denial of service (segmentation fault) and
possibly execute arbitrary code via a modrdn call with an RDN string
containing invalid UTF-8 sequences, which triggers a free of an invalid,
uninitialized pointer in the slap_mods_free function, as demonstrated using
the Codenomicon LDAPv3 test suite.

OSVersionArchitecturePackageVersionFilename
ubuntu9.04noarchopenldap< 2.4.15-1ubuntu3.1UNKNOWN
ubuntu9.10noarchopenldap< 2.4.18-0ubuntu1.1UNKNOWN
ubuntu10.04noarchopenldap< 2.4.21-0ubuntu5.2UNKNOWN
ubuntu6.06noarchopenldap2.2< 2.2.26-5ubuntu2.10UNKNOWN
ubuntu8.04noarchopenldap2.3< 2.4.9-0ubuntu0.8.04.4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	9.04	noarch	openldap	< 2.4.15-1ubuntu3.1	UNKNOWN
ubuntu	9.10	noarch	openldap	< 2.4.18-0ubuntu1.1	UNKNOWN
ubuntu	10.04	noarch	openldap	< 2.4.21-0ubuntu5.2	UNKNOWN
ubuntu	6.06	noarch	openldap2.2	< 2.2.26-5ubuntu2.10	UNKNOWN
ubuntu	8.04	noarch	openldap2.3	< 2.4.9-0ubuntu0.8.04.4	UNKNOWN