Detections
Analytics

RHEL 6 : openldap (RHSA-2011:0347)

critical Nessus Plugin ID 52628

Language:

Synopsis

The remote Red Hat host is missing one or more security updates for openldap.

Description

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0347 advisory.

 OpenLDAP is an open source suite of LDAP (Lightweight Directory Access Protocol) applications and development tools.

 A flaw was found in the way OpenLDAP handled authentication failures being passed from an OpenLDAP slave to the master. If OpenLDAP was configured with a chain overlay and it forwarded authentication failures, OpenLDAP would bind to the directory as an anonymous user and return success, rather than return failure on the authenticated bind. This could allow a user on a system that uses LDAP for authentication to log into a directory-based account without knowing the password. (CVE-2011-1024)

 It was found that the OpenLDAP back-ndb back end allowed successful authentication to the root distinguished name (DN) when any string was provided as a password. A remote user could use this flaw to access an OpenLDAP directory if they knew the value of the root DN. Note: This issue only affected OpenLDAP installations using the NDB back-end, which is only available for Red Hat Enterprise Linux 6 via third-party software.
 (CVE-2011-1025)

 A flaw was found in the way OpenLDAP handled modify relative distinguished name (modrdn) requests. A remote, unauthenticated user could use this flaw to crash an OpenLDAP server via a modrdn request containing an empty old RDN value. (CVE-2011-1081)

 Users of OpenLDAP should upgrade to these updated packages, which contain backported patches to resolve these issues. After installing this update, the OpenLDAP daemons will be restarted automatically.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the RHEL openldap package based on the guidance in RHSA-2011:0347.

See Also

http://www.nessus.org/u?a954b3fc

https://access.redhat.com/security/updates/classification/#moderate

https://bugzilla.redhat.com/show_bug.cgi?id=680466

https://bugzilla.redhat.com/show_bug.cgi?id=680472

https://bugzilla.redhat.com/show_bug.cgi?id=680975

https://access.redhat.com/errata/RHSA-2011:0347

Plugin Details

Severity: Critical

ID: 52628

File Name: redhat-RHSA-2011-0347.nasl

Version: 1.12

Type: local

Agent: unix

Published: 3/11/2011

Updated: 9/10/2025

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.5

Vendor

Vendor Severity: Moderate

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2011-1025

CVSS v3

Risk Factor: Critical

Base Score: 10

Temporal Score: 9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS Score Source: CVE-2011-1081

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:openldap-devel, p-cpe:/a:redhat:enterprise_linux:openldap-clients, p-cpe:/a:redhat:enterprise_linux:openldap-servers-sql, cpe:/o:redhat:enterprise_linux:6, p-cpe:/a:redhat:enterprise_linux:compat-openldap, p-cpe:/a:redhat:enterprise_linux:openldap-servers, p-cpe:/a:redhat:enterprise_linux:openldap

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 3/10/2011

Vulnerability Publication Date: 3/19/2011

Reference Information

CVE: CVE-2011-1024, CVE-2011-1025, CVE-2011-1081

BID: 46363

RHSA: 2011:0347