Back to search
CVE-2011-1024
Published: Mar 20, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote authenticated users to bypass external-program authentication by sending an invalid password to a slave server.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
GLSA-201406-36
vendor-advisory
x_refsource_GENTOO
RHSA-2011:0346
vendor-advisory
x_refsource_REDHAT
1025188
vdb-entry
x_refsource_SECTRACK
43708
third-party-advisory
x_refsource_SECUNIA
http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607
x_refsource_CONFIRM
[openldap-technical] 20100429 ppolicy master/slave issue
mailing-list
x_refsource_MLIST
[openldap-announce] 20110212 OpenLDAP 2.4.24 available
mailing-list
x_refsource_MLIST
MDVSA-2011:056
vendor-advisory
x_refsource_MANDRIVA
https://bugzilla.novell.com/show_bug.cgi?id=674985
x_refsource_CONFIRM
[oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues
mailing-list
x_refsource_MLIST
RHSA-2011:0347
vendor-advisory
x_refsource_REDHAT
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
x_refsource_CONFIRM
MDVSA-2011:055
vendor-advisory
x_refsource_MANDRIVA
43718
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=680466
x_refsource_CONFIRM
[oss-security] 20110224 CVE Request -- OpenLDAP -- two issues
mailing-list
x_refsource_MLIST
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
x_refsource_CONFIRM
USN-1100-1
vendor-advisory
x_refsource_UBUNTU
ADV-2011-0665
vdb-entry
x_refsource_VUPEN
43331
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now