Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-15134

Опубликовано: 01 мар. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.

РелизСтатусПримечание
artful

ignored

end of life
bionic

released

1.3.7.9-1
cosmic

not-affected

1.4.0.18-1
devel

not-affected

1.4.0.18-1
disco

not-affected

1.4.0.18-1
eoan

not-affected

1.4.0.18-1
esm-apps/bionic

released

1.3.7.9-1
esm-apps/focal

not-affected

1.4.0.18-1
esm-apps/jammy

not-affected

1.4.0.18-1
esm-apps/noble

not-affected

1.4.0.18-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 82%
0.017
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-15134

CVSS3: 7.5
redhat
почти 8 лет назад

A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.

nvd логотип

CVE-2017-15134

CVSS3: 7.5
nvd
больше 7 лет назад

A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.

debian логотип

CVE-2017-15134

CVSS3: 7.5
debian
больше 7 лет назад

A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x ...

github логотип

GHSA-7358-vfr4-6m85

CVSS3: 7.5
github
больше 3 лет назад

A stack buffer overflow flaw was found in the way 389-ds-base 1.3.6.x before 1.3.6.13, 1.3.7.x before 1.3.7.9, 1.4.x before 1.4.0.5 handled certain LDAP search filters. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.

oracle-oval логотип

ELSA-2018-0163

oracle-oval
почти 8 лет назад

ELSA-2018-0163: 389-ds-base security and bug fix update (IMPORTANT)

EPSS

Процентиль: 82%
0.017
Низкий

5 Medium

CVSS2

7.5 High

CVSS3