2.3

CVE-2006-4600

slapd in OpenLDAP before 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify arbitrary Distinguished Names (DN).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OpenldapOpenldap Version2.0.20
OpenldapOpenldap Version2.0.21
OpenldapOpenldap Version2.0.22
OpenldapOpenldap Version2.0.23
OpenldapOpenldap Version2.0.24
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.66% 0.837
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.3 4.4 2.9
AV:A/AC:M/Au:S/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc
http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html
http://secunia.com/advisories/25894
http://secunia.com/advisories/26909
http://secunia.com/advisories/27706
http://security.gentoo.org/glsa/glsa-200711-23.xml
http://www.vupen.com/english/advisories/2007/3229
http://secunia.com/advisories/25098
http://www.openldap.org/software/release/changes.html
Patch
http://secunia.com/advisories/21721
Patch
Vendor Advisory
http://secunia.com/advisories/22219
http://secunia.com/advisories/22273
http://secunia.com/advisories/22300
http://secunia.com/advisories/25628
http://secunia.com/advisories/25676
http://securitytracker.com/id?1016783
http://support.avaya.com/elmodocs2/security/ASA-2007-232.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2006:171
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4587
Patch
http://www.openldap.org/lists/openldap-announce/200608/msg00000.html
Patch
http://www.redhat.com/support/errata/RHSA-2007-0310.html
http://www.redhat.com/support/errata/RHSA-2007-0430.html
http://www.securityfocus.com/archive/1/447395/100/200/threaded
http://www.securityfocus.com/bid/19832
Patch
http://www.trustix.org/errata/2006/0055
http://www.vupen.com/english/advisories/2007/2186
https://exchange.xforce.ibmcloud.com/vulnerabilities/28772
https://issues.rpath.com/browse/RPL-667
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9618