Vulnerability Name:

CVE-2007-5708 (CCN-38133)

Assigned:2007-09-03
Published:2007-09-03
Updated:2011-03-07
Summary:slapo-pcache (overlays/pcache.c) in slapd in OpenLDAP before 2.3.39, when running as a proxy-caching server, allocates memory using a malloc variant instead of calloc, which prevents an array from being initialized properly and might allow attackers to cause a denial of service (segmentation fault) via unknown vectors that prevent the array from being null terminated.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:7.1 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C)
5.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
1.9 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P)
1.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-399
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: Debian Bug report logs - #440632
ldapadd with 'objectClasses' instead of 'objectClass' brings slapd down

Source: MITRE
Type: CNA
CVE-2007-5708

Source: CCN
Type: SA27424
OpenLDAP Denial of Service Vulnerabilities

Source: SECUNIA
Type: Patch, Vendor Advisory
27424

Source: SECUNIA
Type: Vendor Advisory
27683

Source: SECUNIA
Type: Vendor Advisory
27756

Source: SECUNIA
Type: Vendor Advisory
27868

Source: SECUNIA
Type: Vendor Advisory
29225

Source: SECUNIA
Type: Vendor Advisory
29461

Source: SECUNIA
Type: Vendor Advisory
29682

Source: GENTOO
Type: UNKNOWN
GLSA-200803-28

Source: DEBIAN
Type: UNKNOWN
DSA-1541

Source: DEBIAN
Type: DSA-1541
openldap2.3 -- several vulnerabilities

Source: CCN
Type: GLSA-200803-28
OpenLDAP: Denial of Service vulnerabilities

Source: MANDRIVA
Type: UNKNOWN
MDVSA-2008:058

Source: SUSE
Type: UNKNOWN
SUSE-SR:2007:024

Source: MISC
Type: UNKNOWN
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=5163

Source: MLIST
Type: Patch
[openldap-announce] 20071026 OpenLDAP 2.3.39 available

Source: CCN
Type: OpenLDAP Web site
2.3.39 Release Changes

Source: CCN
Type: OSVDB ID: 38485
OpenLDAP slapd slapo-pcache Unspecified Remote DoS

Source: FEDORA
Type: UNKNOWN
FEDORA-2007-741

Source: BID
Type: UNKNOWN
26245

Source: CCN
Type: BID-26245
OpenLDAP Multiple Remote Denial of Service Vulnerabilities

Source: CCN
Type: TLSA-2008-38
Multiple vulnerabilities exist in openldap

Source: CCN
Type: USN-551-1
OpenLDAP vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-551-1

Source: VUPEN
Type: Vendor Advisory
ADV-2007-3645

Source: XF
Type: UNKNOWN
openldap-objectclasses-dos(38133)

Source: SUSE
Type: SUSE-SR:2007:024
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:openldap:openldap:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:1.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.11_9:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.11_11:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.11_11s:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.15:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.18:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.19:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.20:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.21:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.22:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.23:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.24:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.25:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.26:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.0.27:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.12:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.13:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.14:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.15:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.16:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.17:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.18:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.19:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.20:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.21:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.22:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.23:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.24:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.25:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.26:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.27:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.28:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.29:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1.30:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.1_.20:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.9:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.14:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.15:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.16:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.17:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.18:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.19:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.20:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.21:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.22:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.23:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.24:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.25:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.26:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.27:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.28_r2:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.2.29_rev_1.134:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.3.27_2.20061018:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.3.28_2.20061022:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.3.28_20061022:*:*:*:*:*:*:*
  • OR cpe:/a:openldap:openldap:2.3.28_e1.0.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20075708
    V
    		CVE-2007-5708
    2015-11-16
    oval:org.mitre.oval:def:17649
    P
    		USN-551-1 -- openldap vulnerabilities
    2014-06-30
    oval:org.mitre.oval:def:18413
    P
    		DSA-1541-1 openldap2.3
    2014-06-23
    oval:org.debian:def:1541
    V
    		several vulnerabilities
    2008-04-08
    BACK
    openldap openldap 1.0
    openldap openldap 1.0.1
    openldap openldap 1.0.2
    openldap openldap 1.0.3
    openldap openldap 1.1
    openldap openldap 1.1.0
    openldap openldap 1.1.1
    openldap openldap 1.1.2
    openldap openldap 1.1.3
    openldap openldap 1.1.4
    openldap openldap 1.2
    openldap openldap 1.2.0
    openldap openldap 1.2.1
    openldap openldap 1.2.2
    openldap openldap 1.2.3
    openldap openldap 1.2.4
    openldap openldap 1.2.5
    openldap openldap 1.2.6
    openldap openldap 1.2.7
    openldap openldap 1.2.8
    openldap openldap 1.2.9
    openldap openldap 1.2.10
    openldap openldap 1.2.11
    openldap openldap 1.2.12
    openldap openldap 1.2.13
    openldap openldap 2.0
    openldap openldap 2.0.0
    openldap openldap 2.0.1
    openldap openldap 2.0.2
    openldap openldap 2.0.3
    openldap openldap 2.0.4
    openldap openldap 2.0.5
    openldap openldap 2.0.6
    openldap openldap 2.0.7
    openldap openldap 2.0.8
    openldap openldap 2.0.9
    openldap openldap 2.0.10
    openldap openldap 2.0.11
    openldap openldap 2.0.11_9
    openldap openldap 2.0.11_11
    openldap openldap 2.0.11_11s
    openldap openldap 2.0.12
    openldap openldap 2.0.13
    openldap openldap 2.0.14
    openldap openldap 2.0.15
    openldap openldap 2.0.16
    openldap openldap 2.0.17
    openldap openldap 2.0.18
    openldap openldap 2.0.19
    openldap openldap 2.0.20
    openldap openldap 2.0.21
    openldap openldap 2.0.22
    openldap openldap 2.0.23
    openldap openldap 2.0.24
    openldap openldap 2.0.25
    openldap openldap 2.0.26
    openldap openldap 2.0.27
    openldap openldap 2.1.2
    openldap openldap 2.1.3
    openldap openldap 2.1.4
    openldap openldap 2.1.5
    openldap openldap 2.1.6
    openldap openldap 2.1.7
    openldap openldap 2.1.8
    openldap openldap 2.1.9
    openldap openldap 2.1.10
    openldap openldap 2.1.11
    openldap openldap 2.1.12
    openldap openldap 2.1.13
    openldap openldap 2.1.14
    openldap openldap 2.1.15
    openldap openldap 2.1.16
    openldap openldap 2.1.17
    openldap openldap 2.1.18
    openldap openldap 2.1.19
    openldap openldap 2.1.20
    openldap openldap 2.1.21
    openldap openldap 2.1.22
    openldap openldap 2.1.23
    openldap openldap 2.1.24
    openldap openldap 2.1.25
    openldap openldap 2.1.26
    openldap openldap 2.1.27
    openldap openldap 2.1.28
    openldap openldap 2.1.29
    openldap openldap 2.1.30
    openldap openldap 2.1_.20
    openldap openldap 2.2.0
    openldap openldap 2.2.1
    openldap openldap 2.2.4
    openldap openldap 2.2.5
    openldap openldap 2.2.6
    openldap openldap 2.2.7
    openldap openldap 2.2.8
    openldap openldap 2.2.9
    openldap openldap 2.2.10
    openldap openldap 2.2.11
    openldap openldap 2.2.12
    openldap openldap 2.2.13
    openldap openldap 2.2.14
    openldap openldap 2.2.15
    openldap openldap 2.2.16
    openldap openldap 2.2.17
    openldap openldap 2.2.18
    openldap openldap 2.2.19
    openldap openldap 2.2.20
    openldap openldap 2.2.21
    openldap openldap 2.2.22
    openldap openldap 2.2.23
    openldap openldap 2.2.24
    openldap openldap 2.2.25
    openldap openldap 2.2.26
    openldap openldap 2.2.27
    openldap openldap 2.2.28_r2
    openldap openldap 2.2.29_rev_1.134
    openldap openldap 2.3.27_2.20061018
    openldap openldap 2.3.28_2.20061022
    openldap openldap 2.3.28_20061022
    openldap openldap 2.3.28_e1.0.0