Lucene search
Ubuntu.comUB:CVE-2007-3193HistoryJun 12, 2007 - 12:00 a.m.
CVE-2007-3193
2007-06-1200:00:00
ubuntu.com
ubuntu.com
7
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.033
Percentile
91.5%
lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration
lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to
bypass authentication via an empty password, which causes ldap_bind to
return true when used with certain LDAP implementations.
Related
cvelist
cvelist
CVE-2007-3193
2007-06-12 23:00:00
prion
prion
Authentication flaw
2007-06-12 23:30:00
gentoo
gentoo
PhpWiki: Authentication bypass
2007-09-18 00:00:00
cve
cve
CVE-2007-3193
2007-06-12 23:30:00
openvas
openvas
Gentoo Security Advisory GLSA 200709-10 (phpwiki)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200709-10 (phpwiki)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-1371-1)
2008-01-17 00:00:00
nvd
nvd
CVE-2007-3193
2007-06-12 23:30:00
nessus
nessus
GLSA-200709-10 : PhpWiki: Authentication bypass
2007-09-24 00:00:00
Debian DSA-1371-1 : phpwiki - several vulnerabilities
2007-09-14 00:00:00
osv
osv
phpwiki - several vulnerabilities
2007-09-11 00:00:00
debian
debian
[SECURITY] [DSA 1371-1] New phpwiki packages fix several vulnerabilities
2007-09-11 18:46:30
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.033
Percentile
91.5%
Related for UB:CVE-2007-3193