CVE-2003-1201 in OpenLDAPinfo

Summary

ldbm_back_exop_passwd in the back-ldbm backend in passwd.c for OpenLDAP 2.1.12 and earlier, when the slap_passwd_parse function does not return LDAP_SUCCESS, attempts to free an uninitialized pointer, which allows remote attackers to cause a denial of service (segmentation fault).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

05/04/2005

Disclosure

03/20/2003

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-170

CVSS

5.3

EPSS

0.00282

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-1201
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-1201
CVE Details	https://www.cvedetails.com/cve/CVE-2003-1201/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!