Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-0132HistoryMar 18, 2014 - 5:02 p.m.
CVE-2014-0132
2014-03-1817:02:53
Debian Security Bug Tracker
security-tracker.debian.org
21
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS
0.006
Percentile
77.9%
The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | 389-ds-base | < 1.3.2.9-1.1 | 389-ds-base_1.3.2.9-1.1_all.deb |
| Debian | 11 | all | 389-ds-base | < 1.3.2.9-1.1 | 389-ds-base_1.3.2.9-1.1_all.deb |
| Debian | 999 | all | 389-ds-base | < 1.3.2.9-1.1 | 389-ds-base_1.3.2.9-1.1_all.deb |
| Debian | 13 | all | 389-ds-base | < 1.3.2.9-1.1 | 389-ds-base_1.3.2.9-1.1_all.deb |
Related
nessus
nessus
Oracle Linux 6 : 389-ds-base (ELSA-2014-0292)
2014-03-14 00:00:00
RHEL 6 : 389-ds-base (RHSA-2014:0292)
2014-03-14 00:00:00
redhat
redhat
(RHSA-2014:0292) Important: 389-ds-base security update
2014-03-13 00:00:00
ubuntucve
ubuntucve
CVE-2014-0132
2014-03-18 00:00:00
seebug
seebug
389 Directory Server SASL/GSSAPI验证绕过漏洞
2014-03-18 00:00:00
amazon
amazon
Important: 389-ds-base
2014-03-24 23:34:00
nvd
nvd
CVE-2014-0132
2014-03-18 17:02:53
fedora
fedora
[SECURITY] Fedora 20 Update: 389-ds-base-1.3.2.16-1.fc20
2014-03-15 15:15:44
[SECURITY] Fedora 19 Update: 389-ds-base-1.3.1.22-1.fc19
2014-03-15 15:23:08
oraclelinux
oraclelinux
389-ds-base security update
2014-03-13 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0145)
2022-01-28 00:00:00
CentOS Update for 389-ds-base CESA-2014:0292 centos6
2014-03-17 00:00:00
Fedora Update for 389-ds-base FEDORA-2014-3904
2014-03-17 00:00:00
cve
cve
CVE-2014-0132
2014-03-18 17:02:53
cvelist
cvelist
CVE-2014-0132
2014-03-18 14:00:00
mageia
mageia
Updated 389-ds-base package fixes security vulnerability
2014-03-31 23:44:51
veracode
veracode
Privilege Escalation
2019-01-15 08:58:29
prion
prion
Authentication flaw
2014-03-18 17:02:00
centos
centos
389 security update
2014-03-13 21:39:06
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
EPSS
0.006
Percentile
77.9%
Related for DEBIANCVE:CVE-2014-0132