Lucene search
K

46 matches found

Tenable Nessus
Tenable Nessus
added 2005/08/31 12:0 a.m.475 views

phpLDAPadmin Anonymous Bind Security Bypass Vulnerability

The remote host is running phpLDAPadmin, a PHP-based LDAP browser. The version of phpLDAPadmin installed on the remote host may allow access to an LDAP server anonymously, even if anonymous binds have been disabled in the application's configuration. %NASLMINLEVEL 70300 C Tenable Network Security...

7.5CVSS5.5AI score0.01776EPSS
Exploits0References3
OSV
OSV
added 2005/08/30 5:3 p.m.1 views

DEBIAN-CVE-2005-2654

phpldapadmin before 0.9.6c allows remote attackers to gain anonymous access to the LDAP server, even when disableanonbind is set, via an HTTP request to login.php with the anonymousbind parameter set...

7.5CVSS7.2AI score0.01776EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/08/30 12:0 a.m.11 views

phpLDAPadmin < 0.9.6c Anonymous Bind Security Bypass

Binary data 3195.prm...

7.5CVSS7.3AI score0.1167EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2004/03/15 12:0 a.m.25 views

Novell NetWare LDAP Server Anonymous Bind

The server's directory base is set to NULL. This allows information to be enumerated without any prior knowledge of the directory structure. %NASLMINLEVEL 70300 This script was written by David Kyger Changes by Tenable: - Revised plugin title, output formatting 9/3/09 - Replaced broken URL, added...

5.4AI score
Exploits0References1
CVE
CVE
added 2002/06/25 4:0 a.m.51 views

CVE-2002-0007

CVE-2002-0007 affects the Bugzilla CGI.pl component prior to 2.14.1 when used with LDAP. The vulnerability allows a remote attacker to trigger an anonymous LDAP bind by issuing a request that omits a password, causing a null password to be sent to the LDAP server. This is caused by the LDAP bindi...

10CVSS7.1AI score0.02371EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.21 views

CVE-2002-0007

CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a request that does not include a password, which causes a null password to be sent to the LDAP server...

6.7AI score0.02371EPSS
Exploits0References6
Rows per page
Query Builder