Lucene search
GoogleOSV:DSA-790-1HistoryAug 30, 2005 - 12:00 a.m.
phpldapadmin - programming error
2005-08-3000:00:00
Google
osv.dev
11
EPSS
0.008
Percentile
81.7%
Alexander Gerasiov discovered that phpldapadmin, a web based interface
for administering LDAP servers, allows anybody to access the LDAP
server anonymously, even if this is disabled in the configuration with
the “disable_anon_bind” statement.
The old stable distribution (woody) is not vulnerable to this problem.
For the stable distribution (sarge) this problem has been fixed in
version 0.9.5-3sarge2.
For the unstable distribution (sid) this problem has been fixed in
version 0.9.6c-5.
We recommend that you upgrade your phpldapadmin package.
References
Related
openvas
openvas
Debian Security Advisory DSA 790-1 (phpldapadmin)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-790-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200509-04 (phpLDAPadmin)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2005-2654
2005-08-30 00:00:00
nessus
nessus
GLSA-200509-04 : phpLDAPadmin: Authentication bypass
2005-09-12 00:00:00
phpLDAPadmin Anonymous Bind Security Bypass Vulnerability
2005-08-31 00:00:00
Debian DSA-790-1 : phpldapadmin - programming error
2005-09-06 00:00:00
nvd
nvd
CVE-2005-2654
2005-08-30 17:03:00
debiancve
debiancve
CVE-2005-2654
2005-08-30 17:03:00
cve
cve
CVE-2005-2654
2005-08-30 17:03:00
debian
debian
[SECURITY] [DSA 790-1] New phpldapadmin packages fix unauthorised access
2005-08-30 05:27:23
[SECURITY] [DSA 790-1] New phpldapadmin packages fix unauthorised access
2005-08-30 05:27:23
cvelist
cvelist
CVE-2005-2654
2005-08-30 04:00:00
gentoo
gentoo
phpLDAPadmin: Authentication bypass
2005-09-06 00:00:00
