By sending a crafted packet, an attacker can cause the OpenLDAP daemon
to crash with a SIGABRT. This is due to an assert() call within the
ber_get_next method (io.c line 682) that is hit when decoding tampered
BER data.
The following proof of concept exploit can be used to trigger the condition:
The above causes slapd to abort as follows when running with ‘-d3’,
however it should be noted that this will crash the server even when
running in daemon mode.