Skip to main content

Bind Dyndb Ldap

2 CVEs product

Monthly

CVE-2012-2134 MEDIUM PATCH This Month

The handle_connection_error function in ldap_helper.c in bind-dyndb-ldap before 1.1.0rc1 does not properly handle LDAP query errors, which allows remote attackers to cause a denial of service. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Denial Of Service Bind Dyndb Ldap
NVD
CVSS 2.0
4.3
EPSS
1.0%
CVE-2012-3429 MEDIUM POC PATCH This Month

The dns_to_ldap_dn_escape function in src/ldap_convert.c in bind-dyndb-ldap 1.1.0rc1 and earlier does not properly escape distinguished names (DN) for LDAP queries, which allows remote DNS servers to. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Bind Dyndb Ldap
NVD
CVSS 2.0
5.0
EPSS
1.3%
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

The handle_connection_error function in ldap_helper.c in bind-dyndb-ldap before 1.1.0rc1 does not properly handle LDAP query errors, which allows remote attackers to cause a denial of service. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Denial Of Service Bind Dyndb Ldap
NVD
EPSS 1% CVSS 5.0
MEDIUM POC PATCH This Month

The dns_to_ldap_dn_escape function in src/ldap_convert.c in bind-dyndb-ldap 1.1.0rc1 and earlier does not properly escape distinguished names (DN) for LDAP queries, which allows remote DNS servers to. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Bind Dyndb Ldap
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy