Arbitrary Code Execution via .ldaprc File in OpenLDAP2

Arbitrary Code Execution via .ldaprc File in OpenLDAP2

CVE-2002-1379 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.

Learn more about our Web Application Penetration Testing UK.