Bug#397898: Openldap on Sarge affected by known/fixed DoS?

Package: slapd Version: 2.2.23-8 Penetration testing in the company of slapd installed on an up-to-date debian sarge showed that admins were able to make openldap crash using an exploit discovered years ago, http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4740

Bug#397898: Exploit code

The actual exploit used can be found here: http:// www.securityfocus.com/bid/20939/exploit Another useful link: http://www.securityfocus.com/bid/17446/info -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]