Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-5707
HistoryOct 30, 2007 - 7:46 p.m.

CVE-2007-5707

2007-10-3019:46:00
CWE-399
[email protected]
web.nvd.nist.gov
6

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

High

EPSS

0.038

Percentile

92.0%

JSON

OpenLDAP before 2.3.39 allows remote attackers to cause a denial of service (slapd crash) via an LDAP request with a malformed objectClasses attribute. NOTE: this has been reported as a double free, but the reports are inconsistent.

Affected configurations

Nvd
Node
openldapopenldapMatch1.0
OR
openldapopenldapMatch1.0.1
OR
openldapopenldapMatch1.0.2
OR
openldapopenldapMatch1.0.3
OR
openldapopenldapMatch1.1
OR
openldapopenldapMatch1.1.0
OR
openldapopenldapMatch1.1.1
OR
openldapopenldapMatch1.1.2
OR
openldapopenldapMatch1.1.3
OR
openldapopenldapMatch1.1.4
OR
openldapopenldapMatch1.2
OR
openldapopenldapMatch1.2.0
OR
openldapopenldapMatch1.2.1
OR
openldapopenldapMatch1.2.2
OR
openldapopenldapMatch1.2.3
OR
openldapopenldapMatch1.2.4
OR
openldapopenldapMatch1.2.5
OR
openldapopenldapMatch1.2.6
OR
openldapopenldapMatch1.2.7
OR
openldapopenldapMatch1.2.8
OR
openldapopenldapMatch1.2.9
OR
openldapopenldapMatch1.2.10
OR
openldapopenldapMatch1.2.11
OR
openldapopenldapMatch1.2.12
OR
openldapopenldapMatch1.2.13
OR
openldapopenldapMatch2.0
OR
openldapopenldapMatch2.0.0
OR
openldapopenldapMatch2.0.1
OR
openldapopenldapMatch2.0.2
OR
openldapopenldapMatch2.0.3
OR
openldapopenldapMatch2.0.4
OR
openldapopenldapMatch2.0.5
OR
openldapopenldapMatch2.0.6
OR
openldapopenldapMatch2.0.7
OR
openldapopenldapMatch2.0.8
OR
openldapopenldapMatch2.0.9
OR
openldapopenldapMatch2.0.10
OR
openldapopenldapMatch2.0.11
OR
openldapopenldapMatch2.0.11_9
OR
openldapopenldapMatch2.0.11_11
OR
openldapopenldapMatch2.0.11_11s
OR
openldapopenldapMatch2.0.12
OR
openldapopenldapMatch2.0.13
OR
openldapopenldapMatch2.0.14
OR
openldapopenldapMatch2.0.15
OR
openldapopenldapMatch2.0.16
OR
openldapopenldapMatch2.0.17
OR
openldapopenldapMatch2.0.18
OR
openldapopenldapMatch2.0.19
OR
openldapopenldapMatch2.0.20
OR
openldapopenldapMatch2.0.21
OR
openldapopenldapMatch2.0.22
OR
openldapopenldapMatch2.0.23
OR
openldapopenldapMatch2.0.24
OR
openldapopenldapMatch2.0.25
OR
openldapopenldapMatch2.0.26
OR
openldapopenldapMatch2.0.27
OR
openldapopenldapMatch2.1.2
OR
openldapopenldapMatch2.1.3
OR
openldapopenldapMatch2.1.4
OR
openldapopenldapMatch2.1.5
OR
openldapopenldapMatch2.1.6
OR
openldapopenldapMatch2.1.7
OR
openldapopenldapMatch2.1.8
OR
openldapopenldapMatch2.1.9
OR
openldapopenldapMatch2.1.10
OR
openldapopenldapMatch2.1.11
OR
openldapopenldapMatch2.1.12
OR
openldapopenldapMatch2.1.13
OR
openldapopenldapMatch2.1.14
OR
openldapopenldapMatch2.1.15
OR
openldapopenldapMatch2.1.16
OR
openldapopenldapMatch2.1.17
OR
openldapopenldapMatch2.1.18
OR
openldapopenldapMatch2.1.19
OR
openldapopenldapMatch2.1.20
OR
openldapopenldapMatch2.1.21
OR
openldapopenldapMatch2.1.22
OR
openldapopenldapMatch2.1.23
OR
openldapopenldapMatch2.1.24
OR
openldapopenldapMatch2.1.25
OR
openldapopenldapMatch2.1.26
OR
openldapopenldapMatch2.1.27
OR
openldapopenldapMatch2.1.28
OR
openldapopenldapMatch2.1.29
OR
openldapopenldapMatch2.1.30
OR
openldapopenldapMatch2.1_.20
OR
openldapopenldapMatch2.2.0
OR
openldapopenldapMatch2.2.1
OR
openldapopenldapMatch2.2.4
OR
openldapopenldapMatch2.2.5
OR
openldapopenldapMatch2.2.6
OR
openldapopenldapMatch2.2.7
OR
openldapopenldapMatch2.2.8
OR
openldapopenldapMatch2.2.9
OR
openldapopenldapMatch2.2.10
OR
openldapopenldapMatch2.2.11
OR
openldapopenldapMatch2.2.12
OR
openldapopenldapMatch2.2.13
OR
openldapopenldapMatch2.2.14
OR
openldapopenldapMatch2.2.15
OR
openldapopenldapMatch2.2.16
OR
openldapopenldapMatch2.2.17
OR
openldapopenldapMatch2.2.18
OR
openldapopenldapMatch2.2.19
OR
openldapopenldapMatch2.2.20
OR
openldapopenldapMatch2.2.21
OR
openldapopenldapMatch2.2.22
OR
openldapopenldapMatch2.2.23
OR
openldapopenldapMatch2.2.24
OR
openldapopenldapMatch2.2.25
OR
openldapopenldapMatch2.2.26
OR
openldapopenldapMatch2.2.27
OR
openldapopenldapMatch2.2.28_r2
OR
openldapopenldapMatch2.2.29_rev_1.134
OR
openldapopenldapMatch2.3.27_2.20061018
OR
openldapopenldapMatch2.3.28_2.20061022
OR
openldapopenldapMatch2.3.28_20061022
OR
openldapopenldapMatch2.3.28_e1.0.0
VendorProductVersionCPE
openldapopenldap1.0cpe:2.3:a:openldap:openldap:1.0:*:*:*:*:*:*:*
openldapopenldap1.0.1cpe:2.3:a:openldap:openldap:1.0.1:*:*:*:*:*:*:*
openldapopenldap1.0.2cpe:2.3:a:openldap:openldap:1.0.2:*:*:*:*:*:*:*
openldapopenldap1.0.3cpe:2.3:a:openldap:openldap:1.0.3:*:*:*:*:*:*:*
openldapopenldap1.1cpe:2.3:a:openldap:openldap:1.1:*:*:*:*:*:*:*
openldapopenldap1.1.0cpe:2.3:a:openldap:openldap:1.1.0:*:*:*:*:*:*:*
openldapopenldap1.1.1cpe:2.3:a:openldap:openldap:1.1.1:*:*:*:*:*:*:*
openldapopenldap1.1.2cpe:2.3:a:openldap:openldap:1.1.2:*:*:*:*:*:*:*
openldapopenldap1.1.3cpe:2.3:a:openldap:openldap:1.1.3:*:*:*:*:*:*:*
openldapopenldap1.1.4cpe:2.3:a:openldap:openldap:1.1.4:*:*:*:*:*:*:*
Rows per page:
1-10 of 1191

References

Related

nessus 17
openvas 19
centos 1
prion 1
cvelist 1
ubuntucve 1
oraclelinux 1
cve 1
redhat 2
freebsd 1
fedora 2
ubuntu 1
gentoo 1
debian 1
osv 1
nessus
nessus
Scientific Linux Security Update : openldap on SL5.x i386/x86_64
2012-08-01 00:00:00
CentOS 4 : openldap (CESA-2007:1038)
2013-06-29 00:00:00
RHEL 4 : openldap (RHSA-2007:1038)
2007-11-16 00:00:00
openvas
openvas
Fedora Update for openldap FEDORA-2007-741
2009-02-27 00:00:00
Oracle: Security Advisory (ELSA-2007-1037)
2015-10-08 00:00:00
Mandriva Update for openldap MDKSA-2007:215 (openldap)
2009-04-09 00:00:00
centos
centos
compat, openldap security update
2007-11-15 19:22:48
prion
prion
Double free
2007-10-30 19:46:00
cvelist
cvelist
CVE-2007-5707
2007-10-30 19:00:00
ubuntucve
ubuntucve
CVE-2007-5707
2007-10-30 00:00:00
oraclelinux
oraclelinux
Important: openldap security and enhancement update
2007-11-23 00:00:00
cve
cve
CVE-2007-5707
2007-10-30 19:46:00
redhat
redhat
(RHSA-2007:1037) Important: openldap security and enhancement update
2007-11-08 00:00:00
(RHSA-2007:1038) Moderate: openldap security and enhancement update
2007-11-15 00:00:00
freebsd
freebsd
openldap -- multiple remote denial of service vulnerabilities
2007-10-29 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: openldap-2.3.34-4.fc7
2007-11-20 17:47:47
[SECURITY] Fedora 8 Update: openldap-2.3.39-1.fc8
2007-11-09 23:48:49
ubuntu
ubuntu
OpenLDAP vulnerabilities
2007-12-04 00:00:00
gentoo
gentoo
OpenLDAP: Denial of Service vulnerabilities
2008-03-19 00:00:00
debian
debian
[SECURITY] [DSA 1541-1] New openldap2.3 packages fix denial of service
2008-04-08 21:50:58
osv
osv
openldap2.3
2008-04-08 00:00:00

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

High

EPSS

0.038

Percentile

92.0%

JSON
Related for NVD:CVE-2007-5707
nessus17openvas19centos1prion1cvelist1ubuntucve1oraclelinux1cve1redhat2freebsd1fedora2ubuntu1gentoo1debian1osv1