CVE-2006-6493

CVE-2006-6493 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

Buffer overflow in the krbv4_ldap_auth function in servers/slapd/kerberos.c in OpenLDAP 2.4.3 and earlier, when OpenLDAP is compiled with the --enable-kbind (Kerberos KBIND) option, allows remote attackers to execute arbitrary code via an LDAP bind request using the LDAP_AUTH_KRBV41 authentication method and long credential data.

Learn more about our Cis Benchmark Audit For Bind.