LDAP: Derefaliases Invalid

This protocol anomaly is an LDAP search request where the values in the derefAliases field do not conform to those values specified for that field. The conformant values are 0, 1, and 2.

Extended Description

A protocol anomaly exists in LDAP when a remote attacker maliciously forms an invalid LDAP Search Request message. Depending on the implementation of LDAP, the application handling the invalid packets could cause a disclosure of sensitive information, a denial of service, or enable the execution of malicious code on the server.

Short Name
LDAP:INVALID:SRCH-DEREF-AL-INV
Severity
Warning
Recommended
False
Recommended Action
None
Category
LDAP
Release Date
01/30/2004
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3324
False Positive
Unknown

Found a potential security threat?