Signature Detail

Short Name	LDAP:OVERFLOW:MESSAGE-TOO-LONG
Severity	Medium
Recommended	No
Category	LDAP
Keywords	ldap too long
Release Date	2004/01/29
Update Number	1213
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

LDAP: Message Too Long

This protocol anomaly detects an LDAP message where the length of the message is greater than the typical length. This may indicate malicious behavior of the LDAP client.

Extended Description

A protocol anomaly exists in LDAP messages having a length different from what is specified for the TCP packet in which it is contained, and should be detected.

References

BugTraq: 46231
CVE: CVE-2008-4023
CVE: CVE-2010-0358
CVE: CVE-2011-0917
URL: http://www.ietf.org/rfc/rfc2251.txt

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

LDAP: Message Too Long

Extended Description

References