13 matches found
Debian: Security Advisory (DLA-79-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2014-0438)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ MDVSA-2015:185 ] dokuwiki
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:185 http://www.mandriva.com/en/support/security/ Package : dokuwiki Date : March 31, 2015 Affected: Business Server 1.0 Problem Description: Updated dokuwiki packages fix security vulnerabilities:...
Debian DLA-79-1 : dokuwiki security update
This fixes a possibility of bypassing the wiki authentication when an Active Directory is used for LDAP authentication. These two CVE are almost the same, one apparently being a superset of the other. They are fixed together. CVE-2014-8763 DokuWiki before 2014-05-05b, when using Active Directory...
[SECURITY] [DSA 3059-1] dokuwiki security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3059-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 29, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DLA 79-1] dokuwiki security update
Package : dokuwiki Version : 0.0.20091225c-10+squeeze3 CVE ID : CVE-2014-8763 CVE-2014-8764 Debian Bug : 766545 This fixes a possibility of bypasswing the wiki authentication when an Active Directory is used for LDAP authentication. These two CVE are almost the same, one apparently being a supers...
DLA-79-1 dokuwiki - security update
Bulletin has no description...
CVE-2014-8764
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null \0 character, which triggers an anonymous bind...
CVE-2014-8764
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null \0 character, which triggers an anonymous bind...
CVE-2014-8764
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null \0 character, which triggers an anonymous bind...
CVE-2014-8764
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null \0 character, which triggers an anonymous bind...
CVE-2014-8764
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null \0 character, which triggers an anonymous bind...
CVE-2014-8764
DokuWiki (pre-2014-05-05a/b) is vulnerable to LDAP/Active Directory authentication bypass via a leading null byte in credentials. CVE-2014-8764 (anonymous bind) and related CVEs (e.g., CVE-2014-8763/8762/8761) are fixed in subsequent updates across distros (Debian DSA-3059, DLA-79-1; Mageia/MGASA...