80 matches found
CVE-2011-3226
Open Directory in Apple Mac OS X 10.7 before 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, allows remote attackers to bypass the password requirement by leveraging lack of an AuthenticationAuthority attribute for a user account...
CVE-2011-3436
CVE-2011-3436 affects Open Directory on OS X Lion (10.7 and 10.7.1). A password-change access-control flaw allows an unauthenticated bypass where a user can change another account’s password without providing the current one, exploitable via an unattended workstation. The issue is documented in A...
CVE-2011-3435
Open Directory in Apple Mac OS X 10.7 before 10.7.2 allows local users to read the password data of arbitrary users via unspecified vectors...
CVE-2011-3226
CVE-2011-3226 affects Mac OS X 10.7 prior to 10.7.2 when bound to an LDAPv3 server using RFC 2307 or custom mappings. A missing AuthenticationAuthority attribute can allow an LDAP user to log in without a password, bypassing credential checks. Impact: potential unauthorized access. Remediation: a...
CVE-2010-1377
Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an unencrypted connection upon certain SSL failures, which allows man-in-the-middle attackers to spoof arbitrary network account servers, and possibly execute arbitrary code, via unspecified vectors...
CVE-2010-1377
Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an unencrypted connection upon certain SSL failures, which allows man-in-the-middle attackers to spoof arbitrary network account servers, and possibly execute arbitrary code, via unspecified vectors...
CVE-2010-1377
CVE-2010-1377 affects Apple Mac OS X 10.6 before 10.6.4. Open Directory may create an unencrypted connection during certain SSL failures, enabling MITM spoofing of network account servers and possibly arbitrary code execution via unspecified vectors. Root cause is an unencrypted fallback during S...
Mac OS X 10.6.x < 10.6.4 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.4. Mac OS X 10.6.4 contains security fixes for the following components : - CUPS - DesktopServices - Flash Player plug-in - Folder Manager - Help Viewer - iChat - ImageIO - Kerberos - Kernel - libcurl - Network...
Mac OS X 10.5.2 Update / Mac OS X Security Update 2008-001
The remote host is missing Mac OS X 10.5.2 Update / Security Update 2008-001. One or more of the following components are affected: Directory Services Foundation Launch Services Mail NFS Open Directory Parental Controls Samba Terminal X11 OpenVAS Vulnerability Test Mac OS X 10.5.2 Update / Securi...
Mac OS X 10.5.2 Update / Mac OS X Security Update 2008-001
The remote host is missing Mac OS X 10.5.2 Update / Security Update 2008-001. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
CVE-2010-0521
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open Directory via unspecified LDAP requests...
Design/Logic Flaw
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open Directory via unspecified LDAP requests...
CVE-2010-0521
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open Directory via unspecified LDAP requests...
RSA Panel Review – Macs in the Enterprise
Managing IT for a software company has its challenges. For me, the lines between efficiency, security and innovation are difficult to draw at a company like nCircle where engineers require some freedom to perform their best. The panelists at the RSA session “Responding to the ignored threat – Mac...
Unrestricted file upload
Unrestricted file upload vulnerability in upload/upload.php in Japanese PHP Gallery Hosting, when Open directory mode is enabled, allows remote attackers to upload and execute arbitrary PHP code via a ServerPath parameter specifying a filename with a double extension. NOTE: some of these details...
CVE-2007-5733
The CVE-2007-5733 entry describes an unrestricted file upload in Japanese PHP Gallery Hosting (upload/upload.php) when Open directory mode is enabled. The vulnerability allows remote attackers to upload and execute arbitrary PHP code by crafting a ServerPath parameter with a filename using a doub...
Preemptive Protection agains Apple Open Directory Denial of Service Vulnerability
The OpenLDAP software allows LDAP-aware programs on a network to get information from a server. Apple uses OpenLDAP as a part of their Open Directory product. An error in the implementation of OpenLDAP may allow a remote attacker with the ability to send a malformed LDAP request to cause Open...
[Full-disclosure] [MU-200606-02] Apple Open Directory Pre-Authentication Denial of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Apple Open Directory Pre-Authentication Denial of Service MU-200606-02 June 27, 2006 http://labs.musecurity.com/advisories.html Affected Product/Versions: OSX 10.4.4 through 10.4.6 Product Overview:...
Apple Mac OSX 10.4.x - OpenLDAP Denial of Service
source: https://www.securityfocus.com/bid/18728/info Mac OS X Open Directory Server is prone to a denial-of-service vulnerability because it fails to handle exceptional conditions. An attacker can exploit this issue to cause a crash in the LDAP server, effectively denying service to legitimate...
CVE-2005-3701
Unspecified vulnerability in passwordserver in Mac OS X Server 10.3.9 and 10.4.3, when creating an Open Directory master server, allows local users to gain privileges via unknown attack vectors...