CVE-2019-3824
Description
A flaw was found in the way an LDAP search expression could crash the shared LDAP server process of a samba AD DC in samba before version 4.10. An authenticated user, having read permissions on the LDAP server, could use this flaw to cause denial of service.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
7.029
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.2.3-1ubuntu0.1_i386.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.2.3-1ubuntu0.1_amd64.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.1.24-1ubuntu3.1_i386.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.1.24-1ubuntu3.1_amd64.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.1.24-0ubuntu0.14.04.2_i386.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.1.24-0ubuntu0.14.04.2_amd64.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.4.0+really1.3.5-2ubuntu0.1_i386.deb | Linux |
| LDAP-like embedded database - tools (USN-3895-1) libldb1_1.4.0+really1.3.5-2ubuntu0.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234