Signature Detail
Short Name |
LDAP:OVERFLOW:MODRDN-UTF8-EXEC |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
LDAP |
Keywords |
OpenLDAP Modrdn RDN UTF-8 String Code Execution |
Release Date |
2010/10/25 |
Update Number |
1798 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
LDAP: OpenLDAP Modrdn RDN UTF-8 String Code Execution
This signature detects attempts to exploit a known code execution vulnerability in OpenLDAP. It is due to a memory corruption when handling a UTF8 string through modrdn. A remote attacker can exploit this by sending a malicious request through modrdn to connect to the target server. A successful attack allows injection and execution of arbitrary code in the context of the affect service. An unsuccessful attack causes termination of slapd daemon resulting in a denial-of-service condition.
Extended Description
OpenLDAP is prone to multiple vulnerabilities. Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the application or cause denial-of-service conditions. OpenLDAP 2.4.22 is vulnerable; other versions may also be affected.
Affected Products
- Apple Mac OS X 10.6
- Apple Mac OS X 10.6.1
- Apple Mac OS X 10.6.2
- Apple Mac OS X 10.6.3
- Apple Mac OS X 10.6.4
- Apple Mac OS X Server 10.6
- Apple Mac OS X Server 10.6.1
- Apple Mac OS X Server 10.6.2
- Apple Mac OS X Server 10.6.3
- Apple Mac OS X Server 10.6.4
- Avaya Aura Application Enablement Services 4.0
- Avaya Aura Application Enablement Services 4.0.1
- Avaya Aura Application Enablement Services 4.1
- Avaya Aura Application Enablement Services 4.2
- Avaya Aura Application Enablement Services 4.2.1
- Avaya Aura Application Enablement Services 4.2.2
- Avaya Aura Application Enablement Services 4.2.3
- Avaya Aura Application Enablement Services 5.2
- Avaya Aura Application Enablement Services 5.2.1
- Avaya Aura Communication Manager 4.0
- Avaya Aura Communication Manager 4.0
- Avaya Aura Communication Manager 5.1
- Avaya Aura Communication Manager 5.2
- Avaya Aura Communication Manager 5.2.1
- Avaya Aura Communication Manager 6.0
- Avaya Aura Conferencing 6.0 Standard
- Avaya Aura Session Manager 1.1
- Avaya Aura Session Manager 5.2
- Avaya Aura Session Manager 5.2 SP1
- Avaya Aura Session Manager 5.2 SP2
- Avaya Aura Session Manager 6.0
- Avaya Aura SIP Enablement Services 3.0
- Avaya Aura SIP Enablement Services 3.1
- Avaya Aura SIP Enablement Services 3.1.0
- Avaya Aura SIP Enablement Services 3.1.1
- Avaya Aura SIP Enablement Services 4.0
- Avaya Aura SIP Enablement Services 5.0
- Avaya Aura SIP Enablement Services 5.1
- Avaya Aura SIP Enablement Services 5.2
- Avaya Aura SIP Enablement Services 5.2.1
- Avaya Aura System Manager 5.2
- Avaya Aura System Manager 6.0 SP1
- Avaya Aura System Platform 1.1
- Avaya Aura System Platform 6.0
- Avaya Intuity AUDIX LX 2.0
- Avaya Intuity AUDIX LX 2.0 SP1
- Avaya Intuity AUDIX LX 2.0 SP2
- Avaya IQ 5
- Avaya IQ 5.1
- Avaya Meeting Exchange 5.0
- Avaya Meeting Exchange 5.0.0.0.52
- Avaya Meeting Exchange 5.0 SP1
- Avaya Meeting Exchange 5.0 SP2
- Avaya Meeting Exchange 5.1
- Avaya Meeting Exchange 5.1 SP1
- Avaya Meeting Exchange 5.2
- Avaya Meeting Exchange 5.2 SP1
- Avaya Message Networking 3.1
- Avaya Message Networking 5.2
- Avaya Messaging Storage Server 4.0
- Avaya Messaging Storage Server 5.0
- Avaya Messaging Storage Server 5.1
- Avaya Messaging Storage Server 5.2
- Avaya Proactive Contact 4.0
- Avaya Proactive Contact 4.1
- Avaya Proactive Contact 4.1.1
- Avaya Proactive Contact 4.1.2
- Avaya Voice Portal 4.0
- Avaya Voice Portal 4.1
- Avaya Voice Portal 4.1 SP1
- Avaya Voice Portal 4.1 SP2
- Avaya Voice Portal 5.0
- Avaya Voice Portal 5.0 SP1
- Avaya Voice Portal 5.0 SP2
- Avaya Voice Portal 5.1
- Debian Linux 5.0
- Debian Linux 5.0 Alpha
- Debian Linux 5.0 Amd64
- Debian Linux 5.0 Arm
- Debian Linux 5.0 Armel
- Debian Linux 5.0 Hppa
- Debian Linux 5.0 Ia-32
- Debian Linux 5.0 Ia-64
- Debian Linux 5.0 M68k
- Debian Linux 5.0 Mips
- Debian Linux 5.0 Mipsel
- Debian Linux 5.0 Powerpc
- Debian Linux 5.0 S/390
- Debian Linux 5.0 Sparc
- Mandriva Corporate Server 4.0
- Mandriva Corporate Server 4.0.0 X86 64
- Mandriva Enterprise Server 5
- Mandriva Enterprise Server 5 X86 64
- Mandriva Linux Mandrake 2008.0
- Mandriva Linux Mandrake 2008.0 X86 64
- Mandriva Linux Mandrake 2009.0
- Mandriva Linux Mandrake 2009.0 X86 64
- Mandriva Linux Mandrake 2009.1
- Mandriva Linux Mandrake 2009.1 X86 64
- Mandriva Linux Mandrake 2010.0
- Mandriva Linux Mandrake 2010.0 X86 64
- Mandriva Linux Mandrake 2010.1
- Mandriva Linux Mandrake 2010.1 X86 64
- OpenLDAP 2.4.22
- Red Hat Desktop 4.0.0
- Red Hat Enterprise Linux 5 Server
- Red Hat Enterprise Linux AS 4
- Red Hat Enterprise Linux AS 4.8.Z
- Red Hat Enterprise Linux Desktop 5 Client
- Red Hat Enterprise Linux Desktop Workstation 5 Client
- Red Hat Enterprise Linux ES 4
- Red Hat Enterprise Linux ES 4.8.Z
- Red Hat Enterprise Linux WS 4
- Red Hat Fedora 12
- Red Hat Fedora 13
- SuSE openSUSE 11.0
- SuSE openSUSE 11.1
- SuSE openSUSE 11.2
- SuSE SUSE Linux Enterprise 10 SP3
- SuSE SUSE Linux Enterprise 11
- SuSE SUSE Linux Enterprise Server 9
- Ubuntu Ubuntu Linux 10.04 Amd64
- Ubuntu Ubuntu Linux 10.04 I386
- Ubuntu Ubuntu Linux 10.04 Powerpc
- Ubuntu Ubuntu Linux 10.04 Sparc
- Ubuntu Ubuntu Linux 6.06 LTS Amd64
- Ubuntu Ubuntu Linux 6.06 LTS I386
- Ubuntu Ubuntu Linux 6.06 LTS Powerpc
- Ubuntu Ubuntu Linux 6.06 LTS Sparc
- Ubuntu Ubuntu Linux 8.04 LTS Amd64
- Ubuntu Ubuntu Linux 8.04 LTS I386
- Ubuntu Ubuntu Linux 8.04 LTS Lpia
- Ubuntu Ubuntu Linux 8.04 LTS Powerpc
- Ubuntu Ubuntu Linux 8.04 LTS Sparc
- Ubuntu Ubuntu Linux 9.04 Amd64
- Ubuntu Ubuntu Linux 9.04 I386
- Ubuntu Ubuntu Linux 9.04 Lpia
- Ubuntu Ubuntu Linux 9.04 Powerpc
- Ubuntu Ubuntu Linux 9.04 Sparc
- Ubuntu Ubuntu Linux 9.10 Amd64
- Ubuntu Ubuntu Linux 9.10 I386
- Ubuntu Ubuntu Linux 9.10 Lpia
- Ubuntu Ubuntu Linux 9.10 Powerpc
- Ubuntu Ubuntu Linux 9.10 Sparc
- VMWare ESX 4.0
- VMWare ESX 4.1
References
- BugTraq: 41770
- CVE: CVE-2010-0211