Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-199: OpenLDAP Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-199: OpenLDAP Vulnerability
# 1  
Old 02-25-2008
S-199: OpenLDAP Vulnerability
There is a flaw in the way the OpenLDAP slapd daemon handled modified and modrdn request with NOOP control on objects stored in a Berkeley DB (BDB) storage backend. The risk is LOW. An authenticated attacker with permission to perform modify or modrdn operations on such LDAP ojects could cause slapd to crash.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Perl Script to delete record if it exceeds 199 fields

HI All, I am new to perl ,need your inputs for my better understanding. I have 5 UNIX files ,inside which only required fields will be loaded except with junk data mentioned in double quotes .For Ex File has below information: Process=High Name=Albert Age=27 ... (8 Replies)
Discussion started by: Perlbaby
8 Replies

2. Red Hat

Need OpenLDAP Help

Hi, all: I'm studying for the RHCE and have hit the section on configuring an OpenLDAP client. I'd like to practice this, but I can't get an OpenLDAP server set up. I followed the directions in RedHat's Deployment Guide, and it looks like the server is up and running, but I can't get the... (0 Replies)
Discussion started by: rjlohman
0 Replies

3. News, Links, Events and Announcements

A $199 PC with No Windows, No Intel Inside

A lot of comuting power for $199: http://story.news.yahoo.com/news?tmpl=story2&cid=569&e=4&u=/nm/20021208/tc_nm/column_pluggedin_dc (8 Replies)
Discussion started by: Neo
8 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

slapo-pbind

SLAPO-PBIND(5)							File Formats Manual						    SLAPO-PBIND(5)

NAME

       slapo-pbind - proxy bind overlay to slapd

SYNOPSIS

       /etc/openldap/slapd.conf

DESCRIPTION

       The  pbind  overlay  to	slapd(8) forwards Simple Binds on a local database to a remote LDAP server instead of processing them locally. The
       remote connection is managed using an instance of the ldap backend.

       The pbind overlay uses a subset of the ldap backend's config directives. They are described in more detail in slapd-ldap(5).

       Note: this overlay is built into the ldap backend; it is not a separate module.

       overlay pbind
	      This directive adds the proxy bind overlay to the current backend.  The proxy bind overlay may be used with any backend, but  it	is
	      mainly intended for use with local storage backends.

       uri <ldapurl>
	      LDAP server to use.

       tls <TLS parameters>
	      Specify the use of TLS.

       network-timeout <time>
	      Set the network timeout.

       quarantine <quarantine parameters>
	      Turns on quarantine of URIs that returned LDAP_UNAVAILABLE.

FILES

       /etc/openldap/slapd.conf
	      default slapd configuration file

SEE ALSO

       slapd.conf(5), slapd-config(5), slapd-ldap(5), slapd(8).

AUTHOR

       Howard Chu

OpenLDAP 2.4.39 						    2014/01/26							    SLAPO-PBIND(5)