Lucene search
+L

79 matches found

RedHat Linux
RedHat Linux
added 2009/12/11 1:42 p.m.3 views

OpenJDK LDAP client remote code execution (6737315)

Unspecified vulnerability in the LDAP implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier allows remote LDAP servers to execute arbitrary code via unknown vector...

10CVSS6.5AI score0.04389EPSS
Exploits0References4
exploitpack
exploitpack
added 2009/12/10 12:0 a.m.15 views

phpLDAPadmin - Local File Inclusion

phpLDAPadmin - Local File Inclusion PHPLDAPADMIN LOCAL FILE INCLUSION author : ipsecs website : http://ipsecs.com Date : December, 10th, 2009 -i- Description "Phpldapadmin is web based LDAP client which provides easy, anywhere-accessible, multi-language administration for LDAP server."...

Exploits0
0day.today
0day.today
added 2009/12/10 12:0 a.m.25 views

phpldapadmin Local File Inclusion

Exploit for unknown platform in category web applications ================================= phpldapadmin Local File Inclusion ================================= PHPLDAPADMIN LOCAL FILE INCLUSION author : ipsecs website : http://ipsecs.com Date : December, 10th, 2009 -i- Description "Phpldapadmin i...

7.1AI score
Exploits0
NVD
NVD
added 2009/11/29 1:7 p.m.21 views

CVE-2009-4080

Multiple unspecified vulnerabilities in ldapcachemgr aka the LDAP client configuration cache daemon in Sun Solaris 9 and 10, and OpenSolaris before snv78, allow local users to cause a denial of service daemon crash via vectors involving multiple serviceSearchDescriptor attributes and a call to th...

2.1CVSS6.6AI score0.00346EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2009/05/18 8:28 p.m.10 views

OpenJDK LDAP client remote code execution (6737315)

Unspecified vulnerability in the LDAP implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; SDK and JRE 1.3.124 and earlier; and 1.4.219 and earlier allows remote LDAP servers to execute arbitrary code via unknown vector...

10CVSS6.5AI score0.04389EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/12/15 12:0 a.m.13 views

LDAP Client Anonymous Bind Connection

Binary data 4316.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/12/15 12:0 a.m.12 views

LDAP Client Anonymous Bind Utilization

Binary data 4317.prm...

7.3AI score
Exploits0References1
CVE
CVE
added 2007/10/26 7:0 p.m.53 views

CVE-2002-2328

Technical details for CVE-2002-2328 are not publicly available in the provided documents. No affected products, versions, or remediation are specified here. Monitor for updates from Red Hat/NVD/CVE sources.

7.1CVSS7.2AI score0.16633EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/10/26 7:0 p.m.29 views

CVE-2002-2328

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service hang via an LDAP client that sets the page length to zero during a large request...

6.8AI score0.16633EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2006/07/05 12:0 a.m.29 views

CentOS 4 : openldap / nss_ldap (CESA-2005:767)

Updated openldap and nssldap packages that correct a potential password disclosure issue and possible authentication vulnerability are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenLDAP is an open source suite of LDAP...

7.5CVSS5.4AI score0.03645EPSS
Exploits0References5
securityvulns
securityvulns
added 2006/04/12 12:0 a.m.44 views

Sun Solaris LDAP client information leak

Command parameters, including password are available from tasks list...

2.5AI score
Exploits0References1Affected Software1
CVE
CVE
added 2005/10/06 4:0 a.m.63 views

CVE-2005-3170

CVE-2005-3170 affects Microsoft Windows 2000 prior to Update Rollup 1 for SP4. The LDAP client accepts LDAPS certificates even when the CA is not trusted, enabling attackers to mislead users into thinking they are on a trusted site. No exploitation details are provided in the sources. Remediation...

5.1CVSS6.8AI score0.01043EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2005/10/06 4:0 a.m.27 views

CVE-2005-3170

The LDAP client on Microsoft Windows 2000 before Update Rollup 1 for SP4 accepts certificates using LDAP Secure Sockets Layer LDAPS even when the Certificate Authority CA is not trusted, which could allow attackers to trick users into believing that they are accessing a trusted site...

6.4AI score0.01043EPSS
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2005/09/06 12:0 a.m.41 views

phpLDAPadmin: Authentication bypass

Background phpLDAPadmin is a web-based LDAP client allowing to easily manage LDAP servers. Description Alexander Gerasiov discovered a flaw in login.php preventing the application from validating whether anonymous bind has been disabled in the target LDAP server configuration. Impact Anonymous...

7.5CVSS6.4AI score0.01776EPSS
Exploits0
Cvelist
Cvelist
added 2003/04/02 5:0 a.m.16 views

CVE-2002-0697

Microsoft Metadirectory Services MMS 2.2 allows remote attackers to bypass authentication and modify sensitive data by using an LDAP client to directly connect to MMS and bypass the checks for MMS credentials...

6.9AI score0.17988EPSS
Exploits0References3
NVD
NVD
added 2002/12/31 5:0 a.m.19 views

CVE-2002-2328

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service hang via an LDAP client that sets the page length to zero during a large request...

7.1CVSS6.8AI score0.16633EPSS
Exploits0References3
NVD
NVD
added 2002/08/12 4:0 a.m.10 views

CVE-2002-0697

Microsoft Metadirectory Services MMS 2.2 allows remote attackers to bypass authentication and modify sensitive data by using an LDAP client to directly connect to MMS and bypass the checks for MMS credentials...

10CVSS6.9AI score0.17988EPSS
Exploits0References3
securityvulns
securityvulns
added 2002/07/25 12:0 a.m.51 views

Security Bulletin MS02-036: Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation (Q317138)

---------------------------------------------------------------------- Title: Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation Q317138 Date: 24 July 2002 Software: Microsoft Metadirectory Services 2.2 Impact: Elevation of privilege Max Risk: Medium Bulletin:...

0.6AI score
Exploits0
Duo Security Advisories
Duo Security Advisories
added 1976/01/01 12:0 a.m.54 views

DUO-PSA-2016-001: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2016-001 Original Publication Date: 2016-05-11 Revision Date: 2016-05-23 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified multiple issues in the Duo Authentication Proxy which, under certain configurations, could...

Exploits0
Rows per page
Query Builder