NVD

Id
65038  
Name
CVE-2006-6493  
Description
Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote attackers to execute arbitrary code via an LDAP bind request using the LDAP_AUTH_KRBV41 authentication method and long credential data.  
Reject
 
CVSS Version
2  
CVSS Score
5.1  
Severity
Medium  
CVSS Base Score
5.1  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-12-12  
Modified Date
2011-03-07  
Seq
2006-6493  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
339449 65038 CVE-2006-6493 2023  View
339450 65038 CVE-2006-6493 http://www.phreedom.org/solar/exploits/openldap-kbind  View
339451 65038 CVE-2006-6493 20061212 OpenLDAP kbind authentication buffer overflow  View
339452 65038 CVE-2006-6493 ADV-2006-4964  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
60291 JVNDB-2006-002557 OpenLDAP の servers/slapd/kerberos.c におけるバッファオーバーフローの脆弱性 OpenLDAP の servers/slapd/kerberos.c の krbv4_ldap_auth 関数には、OpenLDAP が --enable-kbind (Kerberos KBIND) オプションでコンパイルされている際、バッファオーバーフローの脆弱性が存在します。 CVE-2006-6493 22595 CVE-2006-6493 65038 5.1 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-002557.html 2006-12-12 2012-09-25 View