CVE-2007-5794

NONECVSS 0.0

0.0

Race condition in nss_ldap, when used in applications that are linked against the pthread library and fork after a call to nss_ldap, might send user data to the wrong process because of improper handling of the LDAP connection. NOTE: this issue was originally reported for Dovecot with the wrong mailboxes being returned, but other applications might also be affected.

🔗 References (58)

secalert@redhathttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453868
secalert@redhathttp://bugs.gentoo.org/show_bug.cgi?id=198390
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html
secalert@redhathttp://secunia.com/advisories/27670
secalert@redhathttp://secunia.com/advisories/27768
secalert@redhathttp://secunia.com/advisories/27839
secalert@redhathttp://secunia.com/advisories/28061
secalert@redhathttp://secunia.com/advisories/28838
secalert@redhathttp://secunia.com/advisories/29083
secalert@redhathttp://secunia.com/advisories/30352
secalert@redhathttp://secunia.com/advisories/31227
secalert@redhathttp://secunia.com/advisories/31524
secalert@redhathttp://security.gentoo.org/glsa/glsa-200711-33.xml
secalert@redhathttp://support.avaya.com/elmodocs2/security/ASA-2008-332.htm
secalert@redhathttp://wiki.rpath.com/wiki/Advisories:rPSA-2007-0255

Is Your Infrastructure Affected by CVE-2007-5794?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-5794

📅 Published

🔄 Last Modified

🔗 References (58)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-5794?