Signature Detail

Short Name	LDAP:INVALID:SRCH-DEREF-AL-INV
Severity	Low
Recommended	No
Category	LDAP
Release Date	2004/01/29
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

LDAP: Derefaliases Invalid

This protocol anomaly is an LDAP search request where the values in the derefAliases field do not conform to those values specified for that field. The conformant values are 0, 1, and 2.

Extended Description

A protocol anomaly exists in LDAP when a remote attacker maliciously forms an invalid LDAP Search Request message. Depending on the implementation of LDAP, the application handling the invalid packets could cause a disclosure of sensitive information, a denial of service, or enable the execution of malicious code on the server.

References

URL: http://www.ietf.org/rfc/rfc2251.txt

Signature Detail

Short Name

Severity

Recommended

Category

Release Date

Update Number

Supported Platforms

LDAP: Derefaliases Invalid

Extended Description

References