Vulners
Lucene search
pam_ldap and nss_ldap when used with OpenLDAP and connecting to a slave using TLS does not use TLS for the subsequent connection if the client is referred to a master which may cause a password to be sent in cleartext and allows remote attackers to sniff the password.
| Reporter | Title | Published | Views | Family All 38 |
|---|---|---|---|---|
 | CVE-2005-2069 affecting package openldap 2.4.50-1 | 6 Apr 202123:50 | – | cbl_mariner |
 | CentOS 3 : openldap / nss_ldap (CESA-2005:751) | 3 Jul 200600:00 | – | nessus |
| CentOS 4 : openldap / nss_ldap (CESA-2005:767) | 5 Jul 200600:00 | – | nessus |
| Debian DSA-785-1 : libpam-ldap - authentication bypass | 30 Aug 200500:00 | – | nessus |
| GLSA-200507-13 : pam_ldap and nss_ldap: Plain text authentication leak | 14 Jul 200500:00 | – | nessus |
| Mandrake Linux Security Advisory : nss_ldap (MDKSA-2005:121) | 19 Jul 200500:00 | – | nessus |
| RHEL 2.1 / 3 : openldap and nss_ldap (RHSA-2005:751) | 19 Oct 200500:00 | – | nessus |
| RHEL 4 : openldap and nss_ldap (RHSA-2005:767) | 19 Oct 200500:00 | – | nessus |
| Ubuntu 4.10 / 5.04 : openldap2, libpam-ldap, libnss-ldap vulnerabilities (USN-152-1) | 15 Jan 200600:00 | – | nessus |
 | nss_ldap, openldap security update | 17 Oct 200510:35 | – | centos |
10
Node
OROROR
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
25 Sep 2020 00:00Current
7High risk
Vulners AI Score7
CVSS 25
EPSS0.02839