CVE-2006-2754
Published Jun 1, 2006
Last updated 6 years ago
Overview
- Description
- Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code via a long hostname.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Vendor comments
- Red HatThis issue is not exploitable as the status file is only written to and read by the slurpd process. Therefore this is not a vulnerability that affects Red Hat Enterprise Linux 2.1, 3, or 4.
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C2F45B8-B9FB-4D43-B2DD-98413F5F2B85"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DCE7803-E652-4A17-8EEB-B91C81CF48E5"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA5CB439-5F0B-40CF-8564-6875CAC74FCD"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BB5E524E-1B71-46B5-A14E-C2342851C0FD"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE103338-9AE7-4230-A8B2-09273004B4D1"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12621DED-ABF1-47A7-961C-E6DE1F6302AA"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8026929-4845-46E4-A6F8-E60CA498201B"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DE01BD68-D6DC-4220-A3F0-71961CEA205F"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68DE3F16-E171-4FA3-9B00-3F944A4E7604"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "63F7B718-0E5C-4900-A5DE-D59D37EC79D7"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B8805A0-F543-450D-82E9-EE923904E2A8"
},
{
"criteria": "cpe:2.3:a:openldap:openldap:2.2.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58779045-578C-41D5-9CAE-D6F48C91654C"
}
],
"operator": "OR"
}
]
}
]