9 matches found
EUVD-1999-1276
Malware in sbrugna...
CVE-2023-37597
Cross Site Request Forgery CSRF vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete user grouplist function...
SUSE CVE-2015-1827
The getusergrouplist function in the extdom plug-in in FreeIPA before 4.1.4 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service crash via a group list request for a user that belongs to a large number of groups...
CVE-2023-37597
Cross Site Request Forgery CSRF vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete user grouplist function...
CVE-2023-37597
Cross Site Request Forgery CSRF vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete user grouplist function...
CVE-2023-37597
Cross Site Request Forgery CSRF vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete user grouplist function...
PT-2023-26034 · Unknown · Issabel-Pbx
Name of the Vulnerable Software and Affected Versions: issabel-pbx version 4.0.0-6 Description: A Cross Site Request Forgery CSRF issue allows a remote attacker to cause a denial of service via the delete user grouplist function. This can lead to unintended actions being performed without the...
Red Hat FreeIPA extdom plugin denial of service vulnerability
Red Hat FreeIPA is an integrated security information management solution from Red Hat that provides an easy-to-manage identity, policy and audit IPA suite for Linux and Unix computer networks. extdom is a directory server plug-in. A security vulnerability in the 'getusergrouplist' function in...
ipa: memory corruption when using get_user_grouplist()
It was discovered that the IPA extdom Directory Server plug-in did not correctly perform memory reallocation when handling user account information. A request for a list of groups for a user that belongs to a large number of groups would cause a Directory Server to crash...