Vulnerability in Mandrakesoft Mandrake_linux
CVE-2001-0977
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
EPSS: 0.041 (89.4th percentile) — read the EPSS interpretation.
Affected products
- Mandrakesoft Mandrake_linux — versions 7.1, 7.2, 8.0
- Mandrakesoft Mandrake_linux_corporate_server — versions 1.0.1
- Mandrakesoft Mandrake_single_network_firewall — versions 7.2
- Openldap — versions 1.0, 1.0.1, 1.0.2
- Debian Debian_linux — versions 2.2
- Redhat Linux — versions 6.2, 7.0, 7.1
- N/a — versions n/a
References
- cve@mitre.org (US Government Resource, Patch, Third Party Advisory, x_refsource_CERT, third-party-advisory)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
- cve@mitre.org (vendor-advisory, Patch, x_refsource_MANDRAKE, Vendor Advisory)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, Patch, Third Party Advisory, third-party-advisory)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (vdb-entry, x_refsource_XF)