Memory Reallocation Vulnerability in slapi-nis Plug-in

Memory Reallocation Vulnerability in slapi-nis Plug-in

CVE-2015-0283 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The slapi-nis plug-in before 0.54.2 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request for a (1) group with a large number of members or (2) user that belongs to a large number of groups.

Learn more about our Api Penetration Testing.