851 matches found
TYPO3 LDAP Extension Information Disclosure Vulnerability
TYPO3 is a free and open source content management system framework CMS/CMF maintained by the TYPO3 Association in Switzerland.LDAP euldap is one of the LDAP directory service extension plug-ins. An information disclosure vulnerability exists in TYPO3 LDAP extension version 2.8.18 and earlier. An...
CentOS Update for libipa_hbac CESA-2015:2019 centos6
Check the version of libipahbac SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882323";...
libipa_hbac, libsss_idmap, libsss_nss_idmap, libsss_simpleifp, python, sssd security update
CentOS Errata and Security Advisory CESA-2015:2019 Updated sssd packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base...
CentOS Update for compat-openldap CESA-2015:1840 centos5
Check the version of compat-openldap SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882291";...
compat, openldap security update
CentOS Errata and Security Advisory CESA-2015:1840 Updated openldap packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base...
Important: Red Hat Security Advisory: openldap security update
Updated openldap packages that fix one security issue are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
[SECURITY] [DLA 309-1] openldap security update
Package : openldap Version : 2.4.23-7.3+deb6u2 CVE ID : CVE-2015-6908 Debian Bug : 798622 Denis Andzakovic discovered that OpenLDAP, a free implementation of the Lightweight Directory Access Protocol, does not properly handle BER data. An unauthenticated remote attacker can use this flaw to cause...
Debian DSA-3356-1 : openldap - security update
Denis Andzakovic discovered that OpenLDAP, a free implementation of the Lightweight Directory Access Protocol, does not properly handle BER data. An unauthenticated remote attacker can use this flaw to cause a denial of service slapd daemon crash via a specially crafted packet. %NASLMINLEVEL 7030...
[SECURITY] [DSA 3356-1] openldap security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3356-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 12, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3356-1] openldap security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3356-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 12, 2015 https://www.debian.org/security/faq -...
Systems Integrity Management Platform – SIMP
The System Integrity Management Platform SIMP is an Open Source framework designed around the concept that individuals and organizations should not need to repeat the work of automating the basic components of their operating system infrastructure. Expanding upon this philosophy, SIMP also aims t...
The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality of protected information.
The vulnerability of the nssldap package up to version 258 of the Gentoo Linux operating system can lead to a violation of the confidentiality of protected information. This vulnerability can be exploited remotely...
[SECURITY] [DLA 203-1] openldap security update
Package : openldap Version : 2.4.23-7.3+deb6u1 CVE IDs : CVE-2012-1164 CVE-2013-4449 CVE-2014-9713 CVE-2015-1545 Debian Bugs : 663644 729367 761406 776988 Multiple vulnerabilities were found in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol. Please carefully check...
CXF: Large invalid content could cause temporary space to fill
It was found that when a large invalid SOAP message was processed by Apache CXF, it could be saved to a temporary file in the /tmp directory. A remote attacker could send a specially crafted SOAP message that, when processed by an application using Apache CXF, would use an excessive amount of dis...
[SECURITY] Fedora 21 Update: openldap-2.4.40-3.fc21
OpenLDAP is an open source suite of LDAP Lightweight Directory Access Protocol applications and development tools. LDAP is a set of protocols for accessing directory services usually phone book style information, but other information is possible over the Internet, similar to the way DNS Domain...
[SECURITY] [DSA 3209-1] openldap security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3209-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 30, 2015 http://www.debian.org/security/faq -...
DSA-3209-1 openldap - security update
Bulletin has no description...
RHEL 7 : 389-ds-base (RHSA-2015:0416)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0416 advisory. The 389 Directory Server is an LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and...
Apache ActiveMQ LDAP Authentication Bypass Vulnerability
Apache ActiveMQ is an open source message bus that supports JMS1.1 and J2EE 1.4 specification of the JMS Provider implementation . Apache ActiveMQ is configured to support LDAP servers with unauthenticated authentication mechanisms. A vulnerability in the LDAPLoginModule implementation provided b...
UBUNTU-CVE-2014-8088
The 1 ZendLdap class in Zend before 1.12.9 and 2 Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a password starting with a null byte, which triggers an unauthenticated bind...