CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
93.5%
modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers
to cause a denial of service (daemon crash) via a relative Distinguished
Name (DN) modification request (aka MODRDN operation) that contains an
empty value for the OldDN field.
Author | Note |
---|---|
jdstrand | reproducer in oss-security Only affects >= 2.4 |