CVE-2006-0451

Multiple memory leaks in the LDAP component in Fedora Directory Server 1.0 allow remote attackers to cause a denial of service (memory consumption) via invalid BER packets that trigger an error, which might prevent memory from being freed if it was allocated during the ber_scanf call, as demonstrated using the ProtoVer LDAP test suite.

Published: Feb 14, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-0451
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
redhat / fedora_core	1.0	1.0.x

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=179135
http://secunia.com/advisories/18960
http://www.securityfocus.com/bid/16677
https://exchange.xforce.ibmcloud.com/vulnerabilities/24794

Vulnerability Database

289,599

CVE-2006-0451