CVE-2014-9713 Information

Description

The default slapd configuration in the Debian openldap package 2.4.23-3 through 2.4.39-1.1 allows remote authenticated users to modify the user’s permissions and other user attributes via unspecified vectors.

Reference

http://www.debian.org/security/2015/dsa-3209 http://www.openwall.com/lists/oss-security/2015/03/29/2 http://www.securityfocus.com/bid/73217 http://www.ubuntu.com/usn/USN-2742-1 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=761406