Search Scan Shows False Positive Result for OpenLDAP Vulnerabilities CVE-2002-1379 and CVE-2002-1378

Summary: This article covers false positive vulnerabilities in Dell Search software. Scanner may show that Search is vulnerable to CVE-2002-1379 and CVE-2002-1378 for OpenLDAP.

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Symptoms

Scanner shows that Search is vulnerable to CVE-2002-1379 and CVE-2002-1378.

Cause

This is a false positive.

Resolution

This is a false positive result. 

These CVEs show the following:
  • OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to run arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.
  • Search is running OpenLDAP version 2.4.44. This vulnerability is only valid for 2.2.0 and earlier which is not running on Search.
Article Properties
Article Number: 000224931
Article Type: Solution
Last Modified: 09 May 2024
Version:  1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.