2 matches found
CVE-2002-0007
CVE-2002-0007 affects the Bugzilla CGI.pl component prior to 2.14.1 when used with LDAP. The vulnerability allows a remote attacker to trigger an anonymous LDAP bind by issuing a request that omits a password, causing a null password to be sent to the LDAP server. This is caused by the LDAP bindi...
CVE-2002-0007
CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a request that does not include a password, which causes a null password to be sent to the LDAP server...