2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
8.2 High
AI Score
Confidence
High
0.025 Low
EPSS
Percentile
90.2%
slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an LDAP search query with attrsOnly set to true, which causes empty attributes to be returned.
rhn.redhat.com/errata/RHSA-2012-0899.html
seclists.org/fulldisclosure/2019/Dec/26
secunia.com/advisories/48372
secunia.com/advisories/49607
security.gentoo.org/glsa/glsa-201406-36.xml
www.mandriva.com/security/advisories?name=MDVSA-2012:130
www.openldap.org/its/index.cgi/Software%20Bugs?id=7143
www.openldap.org/software/release/changes.html
www.securityfocus.com/bid/52404
seclists.org/bugtraq/2019/Dec/23
support.apple.com/kb/HT210788