CVE-2013-4283

Published: Sep 10, 2013Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

ns-slapd in 389 Directory Server before 1.3.0.8 allows remote attackers to cause a denial of service (server crash) via a crafted Distinguished Name (DN) in a MOD operation request.

Affected (6)

Products: Fedoraproject: 389 Directory Server

1 product

389 Directory Server

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject 389 Directory Server	Up to 1.3.0.7
Fedoraproject 389 Directory Server	Version 1.3.0.2
Fedoraproject 389 Directory Server	Version 1.3.0.3
Fedoraproject 389 Directory Server	Version 1.3.0.4
Fedoraproject 389 Directory Server	Version 1.3.0.5
Fedoraproject 389 Directory Server	Version 1.3.0.6

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://directory.fedoraproject.org/wiki/Releases/1.3.0.8

Source: secalert@redhat.com

Patch

http://rhn.redhat.com/errata/RHSA-2013-1182.html

Source: secalert@redhat.com

http://secunia.com/advisories/54586

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/54650

Source: secalert@redhat.com

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=999634

Source: secalert@redhat.com

http://directory.fedoraproject.org/wiki/Releases/1.3.0.8

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://rhn.redhat.com/errata/RHSA-2013-1182.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/54586

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/54650

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=999634

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.