39 matches found
PT-2021-3958 · Apache · Apache Directory Studio
Name of the Vulnerable Software and Affected Versions: Apache Directory Studio versions prior to 2.0.0.v20210213-M16 Description: The issue is related to the absence of protection for service data. An attacker could exploit this to disclose protected information. The problem arises when configure...
CVE-2018-1337
In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the connection has already been used and put back in a pool of connections, leading to leaking any informati...
Server side request forgery (ssrf)
In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the connection has already been used and put back in a pool of connections, leading to leaking any informati...
DEBIAN-CVE-2018-1337
In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the connection has already been used and put back in a pool of connections, leading to leaking any informati...
CVE-2018-1337
CVE-2018-1337 affects Apache Directory LDAP API prior to 1.0.2. Root cause: a flaw in the SSL Filter setup allows a thread to reuse a connection before TLS is established, potentially leaking data from a request (including credentials from BIND) when a connection is pulled from the pool. Impact: ...
CVE-2018-1337
In Apache Directory LDAP API before 1.0.2, a bug in the way the SSL Filter was setup made it possible for another thread to use the connection before the TLS layer has been established, if the connection has already been used and put back in a pool of connections, leading to leaking any informati...
Apache Directory LDAP API CVE Information Disclosure Vulnerability
The Apache Directory LDAP API is a set of APIs for connecting to any LDAP server. An information disclosure vulnerability exists in the Apache Directory LDAP API, which allows remote attackers to exploit the vulnerability by submitting a specially crafted request to obtain sensitive information...
UBUNTU-CVE-2015-3250
Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors...
CVE-2015-3250
Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors...
CVE-2015-3250
Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors...
CVE-2015-3250
Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors...
CVE-2015-3250
Apache Directory LDAP API before 1.0.0-M31 allows attackers to conduct timing attacks via unspecified vectors...
Design/Logic Flaw
The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet...
CVE-2015-5349
The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet...
CVE-2015-5349
The CSV export in Apache LDAP Studio and Apache Directory Studio before 2.0.0-M10 does not properly escape field values, which might allow attackers to execute arbitrary commands by leveraging a crafted LDAP entry that is interpreted as a formula when imported into a spreadsheet...
Apache Directory Studio Command Injection Vulnerability
Apache Directory Studio is a suite of LDAP tool platforms for connecting to, managing and developing any LDAP server. Apache Directory Studio fails to adequately filter user-submitted input, allowing remote attackers to exploit the vulnerability by submitting special requests to execute arbitrary...
Joomla! Component com_intuit - Apache Directory listing Download
Joomla! Component comintuit - Apache Directory listing Download ======================================================================================== | Title : Joomla.Tutorials GHDB: Apache directory listing Download Vulnerability | | Author : indoushka | | email : [email protected] | | Ho...
Joomla! Component com_intuit - Apache Directory listing Download
======================================================================================== | Title : Joomla.Tutorials GHDB: Apache directory listing Download Vulnerability | | Author : indoushka | | email : [email protected] | | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria...
Проблемы с защитой директорий в Apache под MacOS (case insensitive filesystem)
При использовании файловой системы с наименованием файлов не чуствительным к реестру можно обойти защиту каталогов...