Issue 6768 - NULL OldDN in modrdn operation kill slapd server
Summary: NULL OldDN in modrdn operation kill slapd server
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: slapd (show other issues)
Version: 2.4.23
Hardware: All All
: --- normal
Target Milestone: ---
Assignee: OpenLDAP project
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2011-01-03 15:53 UTC by sergeyfd@gmail.com
Modified: 2014-08-01 21:04 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this issue.
Description ando@openldap.org 2011-01-03 08:10:14 UTC
changed notes
changed state Open to Test
moved from Incoming to Software Bugs
Comment 1 sergeyfd@gmail.com 2011-01-03 15:53:50 UTC
Full_Name: Serge Dubrouski
Version: 2.4.23
OS: RedHat ES 5.5
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (208.30.65.103)


I ound that ldp.exe tool that comes with Windows is able to successfully kill
OpenLDAP 2.4.23 slapd server when one tries to modify DN and submits an empty
old DN. No binding is necessary so even anonymous user can easily run a DOS
attach against OpenLDAP. Log files in openldap show this:

Dec 29 15:19:32 ottawa slapd[11818]: conn=1000 op=2 do_modrdn
Dec 29 15:19:32 ottawa slapd[11818]: do_modrdn: dn () newrdn (C=US)
newsuperior ()
Dec 29 15:19:32 ottawa slapd[11818]: >>> dnPrettyNormal: <>
Dec 29 15:19:32 ottawa slapd[11818]: <<< dnPrettyNormal: <>, <>
Dec 29 15:19:32 ottawa slapd[11818]: >>> dnPrettyNormal: <C=US>
Dec 29 15:19:32 ottawa slapd[11818]: <<< dnPrettyNormal: <c=US>, <c=us>
Dec 29 15:19:32 ottawa slapd[11818]: conn=1000 op=2 MODRDN dn=""
Comment 2 Quanah Gibson-Mount 2011-01-04 11:44:51 UTC
changed notes
Comment 3 Quanah Gibson-Mount 2011-01-04 11:44:58 UTC
changed notes
changed state Test to Release
Comment 4 Quanah Gibson-Mount 2011-02-14 12:42:17 UTC
changed notes
changed state Release to Closed
Comment 5 OpenLDAP project 2014-08-01 21:04:33 UTC
fixed in HEAD
fixed in RE24