QwikSec

Security Database

CVE

CWE

Training

CVE-2013-0336

Published: Nov 3, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (crash) via a connection request without a username/dn, related to the 389 directory server.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://bugzilla.redhat.com/show_bug.cgi?id=913751

x_refsource_CONFIRM

https://git.fedorahosted.org/cgit/freeipa.git/commit/?id=7b45e33400355df44e75576ef7f70a39d163bf8e

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

https://fedorahosted.org/freeipa/ticket/3539

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

389directoryserver-cve20130336-dos(83132)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.