slapd in OpenLDAP 2.0 through 2.0.19 allows local users, and anonymous users before 2.0.8, to conduct a "replace" action on access controls without any values, which causes OpenLDAP to delete non-mandatory attributes that would otherwise be protected by ACLs.
References
Configurations
History
No history.
Information
Published : 2002-01-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-0045
Mitre link : CVE-2002-0045
CVE.ORG link : CVE-2002-0045
JSON object : View
Products Affected
redhat
- linux
openldap
- openldap
CWE