CVE-2008-2952

Опубликовано: 01 июл. 2008

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:openldap:openldap:2.2.4:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.2.5:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.2.6:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.2.7:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.2.8:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.2.9:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.4:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.5:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.6:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.7:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.8:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.9:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.10:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.11:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.12:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.13:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.14:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.15:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.16:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.17:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.18:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.19:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.20:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.21:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.22:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.23:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.24:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.25:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.26:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.27:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.28:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.29:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.30:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.31:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.32:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.33:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.34:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.35:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.36:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.37:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.38:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.39:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.40:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.41:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.42:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.3.43:*:*:*:*:*:*:*

cpe:2.3:a:openldap:openldap:2.4.10:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.50821

Средний

5 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

CVE-2008-2952

ubuntu

почти 17 лет назад

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

CVE-2008-2952

redhat

почти 17 лет назад

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

CVE-2008-2952

debian

почти 17 лет назад

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to ca ...

GHSA-mgjr-3gvp-wpc2

github

около 3 лет назад

liblber/io.c in OpenLDAP 2.2.4 to 2.4.10 allows remote attackers to cause a denial of service (program termination) via crafted ASN.1 BER datagrams that trigger an assertion error.

ELSA-2008-0583

oracle-oval

почти 17 лет назад

ELSA-2008-0583: openldap security update (IMPORTANT)

EPSS

Процентиль: 98%

0.50821

Средний

5 Medium

CVSS2

Дефекты

CWE-399