exploits , vulnerabilities , articles , OpenLDAP Anonymous User Object Attribute Deletion Vulnerability

Title	OpenLDAP Anonymous User Object Attribute Deletion Vulnerability
Published	2002-01-22-12:00AM
Updated	2002-02-09-11:31PM
Class	Access Validation Error
CVE	CVE-2002-0045
Remote	Yes
Local	No
Credit	Credited to Thomas Fritz.
Vulnerable	OpenLDAP OpenLDAP 2.0.7 Caldera OpenLinux 3.1 IA64 Caldera OpenLinux eBuilder 3.0 Caldera OpenLinux Server 3.1 Caldera OpenLinux Workstation 3.1 HP Secure OS software for Linux 1.0 MandrakeSoft Linux Mandrake 8.0 MandrakeSoft Linux Mandrake 8.0 ppc RedHat Linux 7.1 RedHat Linux 7.1 alpha RedHat Linux 7.1 i386 RedHat Linux 7.1 ia64 SCO eServer 2.3.1 OpenLDAP OpenLDAP 2.0.6 OpenLDAP OpenLDAP 2.0.5 OpenLDAP OpenLDAP 2.0.4 OpenLDAP OpenLDAP 2.0.3 OpenLDAP OpenLDAP 2.0.2 OpenLDAP OpenLDAP 2.0.1 OpenLDAP OpenLDAP 2.0
Not Vulnerable	OpenLDAP OpenLDAP 2.0.21 Conectiva Linux 6.0 Conectiva Linux 7.0 MandrakeSoft Linux Mandrake 8.2 MandrakeSoft Linux Mandrake 8.2 ppc OpenLDAP OpenLDAP 2.0.20 OpenLDAP OpenLDAP 2.0.19 Conectiva Linux 6.0 Conectiva Linux 7.0 OpenLDAP OpenLDAP 2.0.18 - Conectiva Linux 6.0 - Conectiva Linux 7.0 OpenLDAP OpenLDAP 2.0.17 - Conectiva Linux 6.0 - Conectiva Linux 7.0 OpenLDAP OpenLDAP 2.0.16 OpenLDAP OpenLDAP 2.0.15 - Conectiva Linux 6.0 - Conectiva Linux 7.0 OpenLDAP OpenLDAP 2.0.14 MandrakeSoft Linux Mandrake 8.1 MandrakeSoft Linux Mandrake 8.1 ia64 OpenLDAP OpenLDAP 2.0.13 OpenLDAP OpenLDAP 2.0.12 S.u.S.E. Linux 7.3 S.u.S.E. Linux 7.3 ppc S.u.S.E. Linux 7.3 sparc OpenLDAP OpenLDAP 2.0.11 -9 Caldera OpenLinux Server 3.1.1 Caldera OpenLinux Workstation 3.1.1 OpenLDAP OpenLDAP 2.0.11 -11S - Caldera OpenLinux eBuilder 3.0 - SCO eServer 2.3.1 OpenLDAP OpenLDAP 2.0.11 -11 - Caldera OpenLinux 3.1 -IA64 - Caldera OpenLinux Server 3.1 - Caldera OpenLinux Server 3.1.1 - Caldera OpenLinux Workstation 3.1 - Caldera OpenLinux Workstation 3.1.1 OpenLDAP OpenLDAP 2.0.11 Caldera OpenLinux Server 3.1.1 Caldera OpenLinux Workstation 3.1.1 Conectiva Linux 6.0 Conectiva Linux 7.0 HP Secure OS software for Linux 1.0 RedHat Linux 7.2 RedHat Linux 7.2 alpha RedHat Linux 7.2 i386 RedHat Linux 7.2 ia64 S.u.S.E. Linux 7.1 S.u.S.E. Linux 7.1 alpha S.u.S.E. Linux 7.1 ppc S.u.S.E. Linux 7.1 sparc S.u.S.E. Linux 7.2 OpenLDAP OpenLDAP 2.0.10 OpenLDAP OpenLDAP 2.0.9 OpenLDAP OpenLDAP 2.0.8
Code	It is likely that an LDAP client can be used to exploit this vulnerability.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-19 Serv-U File Server User Directory Information Disclosure Vulnerability
• 2009-12-18 ReVou Comment Field HTML Injection Vulnerability
• 2009-12-18 Adobe Flash Media Server Resource Exhaustion Remote Denial of Service Vulnerability
• 2009-12-18 Centreon Authentication Mechanism Security Bypass Vulnerability
• 2009-12-18 Family Connections Multiple Input Validation Vulnerabilities
• 2009-12-18 Drupal Contact and Menu Modules Multiple HTML Injection Vulnerabilities
• 2009-12-18 Mozilla Firefox and SeaMonkey NTLM Credential Reflection Authentication Bypass Vulnerability
• 2009-12-18 Mozilla Firefox CVE-2009-3982 JavaScript Engine Multiple Remote Memory Corruption Vulnerabilities
• 2009-12-17 Zen Cart Insecure File and Programs Information Disclosure and Database Deletion Vulnerability
• 2009-12-17 Winamp Module Decoder Plugin Multiple Buffer Overflow Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Sat, 19 Dec 2009 03:06:35 +0000