PT-2016-4398 · Red Hat+2 · 389 Directory Server+3

Mark Reynolds

Published

2016-01-17

Updated

2016-10-12

CVE-2016-0741

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions 389 Directory Server versions 1.3.4.x through 1.3.4.6

Description The issue allows remote attackers to cause a denial of service by leveraging an abnormally closed connection, resulting in an infinite loop and connection blocking.

Recommendations For versions 1.3.4.x through 1.3.4.6, update to version 1.3.4.7 or later to resolve the issue.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

ALT-PU-2016-1031

CESA-2016_0204

CVE-2016-0741

MGASA-2016-0081

RHSA-2016:0204

RHSA-2016_0204

Affected Products

389 Directory Server

Alt Linux

Centos

Red Hat

PT-2016-4398 · Red Hat+2 · 389 Directory Server+3

CVE-2016-0741

Weakness Enumeration

Related Identifiers

Affected Products

References · 18