Lucene search
HistoryAug 30, 2005 - 5:03 p.m.
CVE-2005-2654
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.008
Percentile
81.7%
phpldapadmin before 0.9.6c allows remote attackers to gain anonymous access to the LDAP server, even when disable_anon_bind is set, via an HTTP request to login.php with the anonymous_bind parameter set.
Affected configurations
Node
phpldapadmin_projectphpldapadminRange<0.9.6c
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpldapadmin_project | phpldapadmin | * | cpe:2.3:a:phpldapadmin_project:phpldapadmin:*:*:*:*:*:*:*:* |
Related
openvas
openvas
Debian Security Advisory DSA 790-1 (phpldapadmin)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-790-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200509-04 (phpLDAPadmin)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2005-2654
2005-08-30 00:00:00
nessus
nessus
GLSA-200509-04 : phpLDAPadmin: Authentication bypass
2005-09-12 00:00:00
phpLDAPadmin Anonymous Bind Security Bypass Vulnerability
2005-08-31 00:00:00
Debian DSA-790-1 : phpldapadmin - programming error
2005-09-06 00:00:00
osv
osv
phpldapadmin - programming error
2005-08-30 00:00:00
debiancve
debiancve
CVE-2005-2654
2005-08-30 17:03:00
cve
cve
CVE-2005-2654
2005-08-30 17:03:00
debian
debian
[SECURITY] [DSA 790-1] New phpldapadmin packages fix unauthorised access
2005-08-30 05:27:23
[SECURITY] [DSA 790-1] New phpldapadmin packages fix unauthorised access
2005-08-30 05:27:23
cvelist
cvelist
CVE-2005-2654
2005-08-30 04:00:00
gentoo
gentoo
phpLDAPadmin: Authentication bypass
2005-09-06 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.008
Percentile
81.7%
Related for NVD:CVE-2005-2654