SOL5725 - pam_ldap password policy control vulnerability CAN-2005-2641

ID SOL5725
Type f5
Reporter f5
Modified 2015-02-16T00:00:00


The pam_ldap authentication module may allow clients to authenticate with lower security ciphers than are normally required when the clients have been referred from another LDAP server.

F5 Product Development tracked this issue as CR54024 and it was fixed in BIG-IP LTM 9.1.3 for the 9.1 software branch and in 9.2.2 for the 9.2 software branch. For information about upgrading, refer to the BIG-IP LTM, ASM, GTM, Link Controller or WebAccelerator release notes.