CommuniGate Pro Server < 5.0.8 LDAP Module Field Handling Remote DoS

Medium Nessus Plugin ID 20889


The remote application is prone to denial of service attacks.


The remote host appears to be running CommuniGate Pro, a commercial email and groupware application.

The version of CommuniGate Pro installed on the remote host includes an LDAP server that fails to handle requests with Distinguished Names (DNs) that contain too many elements. A user can leverage this issue to crash not just the LDAP server, but also the entire application on the remote host.


Upgrade to CommuniGate Pro version 5.0.8 or later.

See Also

Plugin Details

Severity: Medium

ID: 20889

File Name: communigatepro_508_ldap_dos.nasl

Version: $Revision: 1.19 $

Type: remote

Agent: windows

Family: Windows

Published: 2006/02/13

Modified: 2017/05/11

Dependencies: 20870, 10263

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:communigate:communigate_pro_core_server

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2006/02/04

Reference Information

CVE: CVE-2006-0566

BID: 16501

OSVDB: 22932