Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-6908Improper Input Validation in Openldap

CWE-20Improper Input Validation10 documents9 sources
Severity
5.0MEDIUMNVD
OSV4.0
EPSS
70.5%
top 1.31%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
4
OpenldapDebian OpenldapApple MAC OS X+1 more
Timeline
PublishedSep 11
Latest updateMay 17

Description

The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a denial of service (reachable assertion and application crash) via crafted BER data, as demonstrated by an attack against slapd.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages6 packages

debiandebian/openldap< openldap 2.4.42+dfsg-2 (bookworm)
Debianopenldap/openldap< 2.4.42+dfsg-2+3
Ubuntuopenldap/openldap< 2.4.31-1+nmu2ubuntu8.2
NVDopenldap/openldap2.4.42
NVDapple/mac_os_x10.11.1

🔴Vulnerability Details

3
GHSA
GHSA-436x-9fhf-jq78: The ber_get_next function in libraries/liblber/io2022-05-17
OSV
openldap vulnerabilities2015-09-16
OSV
CVE-2015-6908: The ber_get_next function in libraries/liblber/io2015-09-11

💥Exploits & PoCs

1
Exploit-DB
OpenLDAP 2.4.42 - ber_get_next Denial of Service2015-09-11

📋Vendor Advisories

4
Ubuntu
OpenLDAP vulnerabilities2015-09-16
Red Hat
openldap: ber_get_next denial of service vulnerability2015-09-09
Debian
CVE-2015-6908: openldap - The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earli...2015
Apple
CVE-2015-6908: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks

💬Community

1
Bugzilla
CVE-2015-6908 openldap: ber_get_next denial of service vulnerability2015-09-11