The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords.
nvd.nist.gov/vuln/detail/CVE-2014-0083