#VU48143 NULL pointer dereference in OpenLDAP - CVE-2020-25692

Cybersecurity Help s.r.o.

Published: 2020-11-04

Vulnerability identifier: #VU48143

Vulnerability risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-25692

CWE-ID: CWE-476

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenLDAP
Server applications / Directory software, identity management

Vendor: OpenLDAP.org

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in slapd normalization handling with modrdn. A remote non-authenticated attacker can send specially crafted packet to the slapd daemon and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

OpenLDAP: 2.4 - 2.4.54

External links
https://bugs.openldap.org/show_bug.cgi?id=9370

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Splunk Enterprise update for third-party components

Multiple vulnerabilities in Hitachi Energy MicroSCADA Pro/X SYS600

Denial of service in IBM Security Guardium

Multiple vulnerabilities in IBM Cloud Pak for Security

Multiple vulnerabilities in Red Hat Migration Toolkit for Containers

Multiple vulnerabilities in Red Hat OpenShift GitOps

Red Hat Enterprise Linux 7 update for openldap

openEuler 20.03 LTS update for openldap

NULL pointer dereference in openldap (Alpine package)

Debian update for openldap