Microsoft Endpoint Configuration Manager (CVE-2025-59501)

The Microsoft Endpoint Configuration Manager application installed on the remote host is missing a security hotfix documented in the vendor advisory. It is, therefore, affected by an elevation of privilege vulnerability. An attacker could exploit this vulnerability by modifying the user principal...

EUVD-2005-3172

Malware in sbrugna...

CVE-2024-12802

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN User Principal Name and SAM Security Account Manager account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and...

Can't complete your request with SAML enabled in a Single Domain

Can't complete your request when logon Netscaler Gateway using UPN name with SAML enabled. On Storefront event log, we can see "An authentication attempt was made for user: [email protected] with realm context resulting in: Failed -1073741715" In Storefront Verbose log, we can see...

Microsoft Entra Joined Configuration (Windows)

Binary data azureadjoinedconfig.nbin...

sssd bug fix and enhancement update

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The System Security Services Daemon SSSD service provides a set of daemons to...

Security update for samba and ldb (important)

openSUSE Security Update: Security update for samba and ldb Announcement ID: openSUSE-SU-2021:3647-1 Rating: important References: 1014440 1192214 1192215 1192246 1192247 1192283 1192284 1192505 Cross-References: CVE-2016-2124 CVE-2020-25717 CVE-2020-25718 CVE-2020-25719 CVE-2020-25721...

idm:DL1 bug fix and enhancement update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fixes and Enhancements: IPA WebUI inaccessible after upgrading to AlmaLinux 8.3.- idoverride-memberof.js missing...

ALBA-2021:0547 idm:DL1 bug fix and enhancement update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fixes and Enhancements: IPA WebUI inaccessible after upgrading to AlmaLinux 8.3.- idoverride-memberof.js missing...

Attempting to setup UPN authentication instead of SAM. When we hit the Store Front, we get "cannot complete your request".

Attempting to setup UPN authentication instead of SAM. When we hit the StoreFront, we get "cannot complete your request". From inside the network, when accessing the storefront portal directly, able to log in with UPN. Issue appears to be the way the NetScaler is handing the authentication token ...

sssd and ding-libs security and bug fix update

ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...

Unable to Sign On to SecureHub

Enrolled User unable to login to Secure Hub, while 2 users in Active Directory have same UPNUserPrincipalName. The Active Directory Users and Computers MMC ADUC will enforce unique values, However, duplicate values for userPrincipalName can be assigned to the users via code. Consider In AD that 2...

ldap-brute NSE Script

Attempts to brute-force LDAP authentication. By default it uses the built-in username and password lists. In order to use your own lists use the userdb and passdb script arguments. This script does not make any attempt to prevent account lockout! If the number of passwords in the dictionary excee...

CVE-2005-3173

Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions...

CVE-2005-3173

Microsoft Windows 2000 before Update Rollup 1 for SP4 is affected by CVE-2005-3173, where logging on with a UPN that has a trailing dot causes the system to fail to apply group policies due to mislocation of the domain controller, potentially bypassing restrictions. The NVD entry documents a CVSS...