5

CVE-2001-0977

slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.

Data is provided by the National Vulnerability Database (NVD)
OpenldapOpenldap Version1.0
OpenldapOpenldap Version1.0.1
OpenldapOpenldap Version1.0.2
OpenldapOpenldap Version1.0.3
OpenldapOpenldap Version1.1
OpenldapOpenldap Version1.1.1
OpenldapOpenldap Version1.1.2
OpenldapOpenldap Version1.1.3
OpenldapOpenldap Version1.1.4
OpenldapOpenldap Version1.2
OpenldapOpenldap Version1.2.1
OpenldapOpenldap Version1.2.2
OpenldapOpenldap Version1.2.3
OpenldapOpenldap Version1.2.4
OpenldapOpenldap Version1.2.5
OpenldapOpenldap Version1.2.6
OpenldapOpenldap Version1.2.7
OpenldapOpenldap Version1.2.8
OpenldapOpenldap Version1.2.9
OpenldapOpenldap Version1.2.10
OpenldapOpenldap Version1.2.11
OpenldapOpenldap Version1.2.12
OpenldapOpenldap Version2.0
OpenldapOpenldap Version2.0.1
OpenldapOpenldap Version2.0.2
OpenldapOpenldap Version2.0.3
OpenldapOpenldap Version2.0.4
OpenldapOpenldap Version2.0.5
OpenldapOpenldap Version2.0.6
OpenldapOpenldap Version2.0.7
DebianDebian Linux Version2.2
MandrakesoftMandrake Linux Version7.1
MandrakesoftMandrake Linux Version7.2
MandrakesoftMandrake Linux Version8.0
RedhatLinux Version6.2
RedhatLinux Version7.0
RedhatLinux Version7.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 2.96% 0.852
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
http://www.cert.org/advisories/CA-2001-18.html
Patch
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/935800
Patch
Third Party Advisory
US Government Resource