30 July 2010
Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT Security Bulletin ASB-2010.0173.2 OpenLDAP vulnerabilities 30 July 2010 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: OpenLDAP Operating System: Windows UNIX variants (UNIX, Linux, OSX) Impact/Access: Execute Arbitrary Code/Commands -- Remote/Unauthenticated Denial of Service -- Remote/Unauthenticated Resolution: Patch/Upgrade CVE Names: CVE-2010-0211 CVE-2010-0212 Member content until: Thursday, August 19 2010 Revision History: July 30 2010: Added CVEs July 20 2010: Initial Release OVERVIEW Two denial of service vulnerabilities were discovered in 'out-of-the-box' standard configurations of OpenLDAP. One of these flaws could lead to arbitrary code execution.  IMPACT A maliciously crafted destination rdn string can cause OpenLDAP to crash while processing a 'modrdn' call. The crash can occur with segfault or at a null pointer dereference. The null pointer dereference could be used to execute arbitrary code which could lead to a system compromise. Authentication is not required to exploit these flaws.  MITIGATION It is recommended to update to version 2.4.23 REFERENCES  Two OpenLDAP preauth vulnerabilities http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6570 AusCERT has made every effort to ensure that the information contained in this document is accurate. However, the decision to use the information described is the responsibility of each user or organisation. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: firstname.lastname@example.org Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: https://www.auscert.org.au/1967 iD8DBQFMUhds/iFOrG6YcBERAouhAJ4kumjxbSasBxm1xb6ebw7nNFuZPwCfekvK hUB38WR1eNqhheQQqounszQ= =0qbZ -----END PGP SIGNATURE-----