VYPR
Unrated severityNVD Advisory· Published Jul 28, 2010· Updated Jun 16, 2026

CVE-2010-0212

CVE-2010-0212

Description

OpenLDAP 2.4.22 allows remote attackers to cause a denial of service (crash) via a modrdn call with a zero-length RDN destination string, which is not properly handled by the smr_normalize function and triggers a NULL pointer dereference in the IA5StringNormalize function in schema_init.c, as demonstrated using the Codenomicon LDAPv3 test suite.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • OpenLDAP/Openldap2 versions
    cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:openldap:openldap:2.4.22:*:*:*:*:*:*:*
    • (no CPE)range: =2.4.22

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.