NVD Vulnerability Detail
Search Exploit, PoC
CVE-2006-4600
Summary

slapd in OpenLDAP before 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify arbitrary Distinguished Names (DN).

Publication Date Sept. 7, 2006, 9:04 a.m.
Registration Date Jan. 29, 2021, 3:45 p.m.
Last Update Oct. 18, 2018, 6:38 a.m.
CVSS2.0 : LOW
Score 2.3
Vector AV:A/AC:M/Au:S/C:N/I:P/A:N
攻撃元区分(AV) 隣接
攻撃条件の複雑さ(AC)
攻撃前の認証要否(Au) 単一
機密性への影響(C) なし
完全性への影響(I)
可用性への影響(A) なし
Get all privileges. いいえ
Get user privileges いいえ
Get other privileges いいえ
User operation required いいえ
Affected software configurations
Configuration1 or higher or less more than less than
cpe:2.3:a:openldap:openldap:2.0.20:*:*:*:*:*:*:*
cpe:2.3:a:openldap:openldap:2.0.21:*:*:*:*:*:*:*
cpe:2.3:a:openldap:openldap:2.0.22:*:*:*:*:*:*:*
cpe:2.3:a:openldap:openldap:2.0.23:*:*:*:*:*:*:*
cpe:2.3:a:openldap:openldap:2.0.24:*:*:*:*:*:*:*
Related information, measures and tools
Common Vulnerabilities List