Vulnerabilities

CVE-2011-4079

by Fred · 27/10/2011

Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value in an LDIF entry.

Date published : 2011-10-27

http://www.securityfocus.com/bid/50384

http://security.gentoo.org/glsa/glsa-201406-36.xml

Related

Tags: Cybersecurity Alert