vulnerability

Huawei EulerOS: CVE-2019-3883: 389-ds-base security update

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Apr 17, 2019

Added

May 30, 2019

Modified

Apr 1, 2026

Description

In 389-ds-base up to version 1.4.1.2, requests are handled by workers threads. Each sockets will be waited by the worker for at most 'ioblocktimeout' seconds. However this timeout applies only for un-encrypted requests. Connections using SSL/TLS are not taking this timeout into account during reads, and may hang longer.An unauthenticated attacker could repeatedly create hanging LDAP requests to hang all the workers, resulting in a Denial of Service.

Solutions

huawei-euleros-2_0_sp5-upgrade-389-ds-basehuawei-euleros-2_0_sp5-upgrade-389-ds-base-libs

References

CVE-2019-3883
https://attackerkb.com/topics/CVE-2019-3883
CWE-772
EULEROS-EulerOS-SA-2019-1562
EUVD-EUVD-2019-13493
https://euvd.enisa.europa.eu/vulnerability/EUVD-2019-13493

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report