CVE-2002-0045

slapd in OpenLDAP 2.0 through 2.0.19 allows local users, and anonymous users before 2.0.8, to conduct a "replace" action on access controls without any values, which causes OpenLDAP to delete non-mandatory attributes that would otherwise be protected by ACLs.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:openldap:openldap:*:*:*:*:*:*:*:*
cpe:2.3:a:openldap:openldap:2.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:redhat:linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:7.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:linux:7.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2002-01-31 05:00

Updated : 2024-02-28 10:24


NVD link : CVE-2002-0045

Mitre link : CVE-2002-0045

CVE.ORG link : CVE-2002-0045


JSON object : View

Products Affected

redhat

  • linux

openldap

  • openldap