CVE-2014-0132

Published: Mar 18, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://fedorahosted.org/389/changeset/76acff12a86110d4165f94e2cba13ef5c7ebc38a/

x_refsource_CONFIRM

57427

third-party-advisory

x_refsource_SECUNIA

RHSA-2014:0292

vendor-advisory

x_refsource_REDHAT

57412

third-party-advisory

x_refsource_SECUNIA

https://fedorahosted.org/389/ticket/47739

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-0132

Description

Affected Products

References