CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2668

389-ds-base before versions 1.3.5.17 and 1.3.6.10 is vulnerable to an invalid pointer dereference in the way LDAP bind requests are handled. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.17

EPSS Ranking 94.6%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

Products affected by CVE-2017-2668

Fedoraproject » 389 Directory Server » Version: 1.3.5.0

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.0
Fedoraproject » 389 Directory Server » Version: 1.3.5.13

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.13
Fedoraproject » 389 Directory Server » Version: 1.3.5.14

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.14
Fedoraproject » 389 Directory Server » Version: 1.3.5.15

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.15
Fedoraproject » 389 Directory Server » Version: 1.3.5.16

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.16
Fedoraproject » 389 Directory Server » Version: 1.3.5.2

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.2
Fedoraproject » 389 Directory Server » Version: 1.3.5.3

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.3
Fedoraproject » 389 Directory Server » Version: 1.3.5.4

cpe:2.3:a:fedoraproject:389_directory_server:1.3.5.4
Fedoraproject » 389 Directory Server » Version: 1.3.6.0

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.0
Fedoraproject » 389 Directory Server » Version: 1.3.6.1

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.1
Fedoraproject » 389 Directory Server » Version: 1.3.6.2

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.2
Fedoraproject » 389 Directory Server » Version: 1.3.6.3

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.3
Fedoraproject » 389 Directory Server » Version: 1.3.6.4

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.4
Fedoraproject » 389 Directory Server » Version: 1.3.6.5

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.5
Fedoraproject » 389 Directory Server » Version: 1.3.6.6

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.6
Fedoraproject » 389 Directory Server » Version: 1.3.6.7

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.7
Fedoraproject » 389 Directory Server » Version: 1.3.6.8

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.8
Fedoraproject » 389 Directory Server » Version: 1.3.6.9

cpe:2.3:a:fedoraproject:389_directory_server:1.3.6.9
Redhat » Enterprise Linux Desktop » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_desktop:6.0
Redhat » Enterprise Linux Desktop » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
Redhat » Enterprise Linux Server » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_server:6.0
Redhat » Enterprise Linux Server » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_server:7.0
Redhat » Enterprise Linux Workstation » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0
Redhat » Enterprise Linux Workstation » Version: 7.0

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2668

Products

Pricing

Contact Us