LDAP Account Manager (LAM) lib/modules.inc LDAP Data Input Filtering Weakness

2007-03-28T06:34:51
ID OSVDB:34538
Type osvdb
Reporter OSVDB
Modified 2007-03-28T06:34:51

Description

Solution Description

Upgrade to version 1.3.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://lam.cvs.sourceforge.net/lam/lam/lib/modules.inc?r1=1.173&r2=1.174 Vendor Specific News/Changelog Entry: http://lam.sourceforge.net/changelog/index.htm Secunia Advisory ID:24687 Secunia Advisory ID:25157 Other Advisory URL: https://sourceforge.net/tracker/index.php?func=detail&aid=1687379&group_id=73243&atid=537211 Other Advisory URL: http://www.us.debian.org/security/2007/dsa-1287 CVE-2007-1840