5

CVE-2008-2952

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

Data is provided by the National Vulnerability Database (NVD)
OpenldapOpenldap Version2.2.4
OpenldapOpenldap Version2.2.5
OpenldapOpenldap Version2.2.6
OpenldapOpenldap Version2.2.7
OpenldapOpenldap Version2.2.8
OpenldapOpenldap Version2.2.9
OpenldapOpenldap Version2.3.4
OpenldapOpenldap Version2.3.5
OpenldapOpenldap Version2.3.6
OpenldapOpenldap Version2.3.7
OpenldapOpenldap Version2.3.8
OpenldapOpenldap Version2.3.9
OpenldapOpenldap Version2.3.10
OpenldapOpenldap Version2.3.11
OpenldapOpenldap Version2.3.12
OpenldapOpenldap Version2.3.13
OpenldapOpenldap Version2.3.14
OpenldapOpenldap Version2.3.15
OpenldapOpenldap Version2.3.16
OpenldapOpenldap Version2.3.17
OpenldapOpenldap Version2.3.18
OpenldapOpenldap Version2.3.19
OpenldapOpenldap Version2.3.20
OpenldapOpenldap Version2.3.21
OpenldapOpenldap Version2.3.22
OpenldapOpenldap Version2.3.23
OpenldapOpenldap Version2.3.24
OpenldapOpenldap Version2.3.25
OpenldapOpenldap Version2.3.26
OpenldapOpenldap Version2.3.27
OpenldapOpenldap Version2.3.28
OpenldapOpenldap Version2.3.29
OpenldapOpenldap Version2.3.30
OpenldapOpenldap Version2.3.31
OpenldapOpenldap Version2.3.32
OpenldapOpenldap Version2.3.33
OpenldapOpenldap Version2.3.34
OpenldapOpenldap Version2.3.35
OpenldapOpenldap Version2.3.36
OpenldapOpenldap Version2.3.37
OpenldapOpenldap Version2.3.38
OpenldapOpenldap Version2.3.39
OpenldapOpenldap Version2.3.40
OpenldapOpenldap Version2.3.41
OpenldapOpenldap Version2.3.42
OpenldapOpenldap Version2.3.43
OpenldapOpenldap Version2.4.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 50.82% 0.978
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P