REDHAT-BUG-458977
First published: Wed Aug 13 2008(Updated: )
Richard Megginson identified multiple memory leaks affecting Red Hat Directory Server and Fedora Directory Server. These issues may possibly be triggered by unauthenticated remote attackers with access to LDAP port. An attacker can cause Directory Server to use excessive amount of memory, and possibly crash or terminate unexpectedly when running out of available memory. Memory leaks that can be triggered by an anonymous user occur during authentication / bind phase, or in (anonymous) LDAP search requests. Affected version: Red Hat Directory Server 7.1, 8.0 Fedora Directory Server 1.1.1 and earlier
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Red Hat Directory Server | =7.1=8.0 | |
| Red Hat 389 Directory Server | <1.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2008-3283
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/red hat
- canonical/red hat directory server
- vendor/fedora
- canonical/red hat 389 directory server