mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-08 22:17:19 +00:00
875 B
875 B
CVE-2011-4079
Description
Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a denial of service (slapd crash) via a zero-length string that triggers a heap-based buffer overflow, as demonstrated using an empty postalAddressAttribute value in an LDIF entry.
POC
Reference
No PoCs from references.