12 matches found
Oracle Linux 4 : nss_ldap (ELSA-2006-0719)
From Red Hat Security Advisory 2006:0719 : Updated nssldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. nssldap is a set of C library extensions that allow...
SLES9: Security update for pam_ldap
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: pamldap For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017445 within the SuS...
SLES9: Security update for pam_ldap
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: pamldap For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5017445 within the SuS...
SuSE9 Security Update : pam_ldap (YOU Patch Number 11259)
pamldap in nssldap does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pamauthenticate function to return a success code even if authentication has failed, as originally reported for xscreensaver. CVE-2006-5170...
Gentoo Security Advisory GLSA 200612-19 (pam_ldap)
The remote host is missing updates announced in advisory GLSA 200612-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian: Security Advisory (DSA-1203-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 10 Security Update : pam_ldap (ZYPP Patch Number 2196)
pamldap in nssldap does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pamauthenticate function to return a success code even if authentication has failed, as originally reported for xscreensaver. CVE-2006-5170...
openSUSE 10 Security Update : pam_ldap (pam_ldap-2194)
pamldap did not return an error conditions correctly when an LDAP directory server responded with a PasswordPolicyResponse control response, which caused the pamauthenticate function to return a success code even if authentication has failed. CVE-2006-5170 %NASLMINLEVEL 70300 C Tenable Network...
[SECURITY] [DSA 1203-1] New libpam-ldap packages fix access control bypass
-------------------------------------------------------------------------- Debian Security Advisory DSA 1203-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 2nd, 2006 http://www.debian.org/security/faq -...
CVE-2006-5170
pamldap in nssldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pamauthenticate function to return a success cod...
CVE-2006-5170
pamldap in nssldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pamauthenticate function to return a success cod...
CVE-2006-5170
CVE-2006-5170 affects pam_ldap in nss_ldap; a PasswordPolicyResponse control could cause pam_authenticate to return success even if authentication failed. Affected platforms include Red Hat Enterprise Linux 4 and Fedora Core 3 and earlier. The issue arises when applications do not properly proces...