389-ds-base LDAP DoS via Malformed Hash Login
CVE-2024-5953 Published on June 18, 2024

389-ds-base: malformed userpassword hash may cause denial of service
A denial of service vulnerability was found in the 389-ds-base LDAP server. This issue may allow an authenticated user to cause a server denial of service while attempting to log in with a user with a malformed hash in their password.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

Attack Vector:
ADJACENT_NETWORK
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
NONE
Integrity Impact:
NONE
Availability Impact:
HIGH

Timeline

Reported to Red Hat.

Made public.

Weakness Type

Improper Validation of Consistency within Input

The product receives a complex input with multiple elements or fields that must be consistent with each other, but it does not validate or incorrectly validates that the input is actually consistent.


Products Associated with CVE-2024-5953

Want to know whenever a new CVE is published for Red Hat products? stack.watch will email you.

Red Hat Directory Server E4s
 
Red Hat Directory Server
 
Red Hat Directory Server Eus
 
Red Hat Rhel Els
 
Red Hat Enterprise Linux (RHEL)
 
Red Hat Rhel Eus
 

Exploit Probability

EPSS
0.07%
Percentile
21.32%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.