|
|
Subscribe / Log in / New account

389-ds-base: access control bypass

Package(s):389-ds-base CVE #(s):CVE-2015-1854
Created:April 29, 2015 Updated:May 4, 2015
Description: From the Red Hat advisory:

A flaw was found in the way Red Hat Directory Server performed authorization of modrdn operations. An unauthenticated attacker able to issue an ldapmodrdn call to the directory server could use this flaw to perform unauthorized modifications of entries in the directory server. (CVE-2015-1854)

Alerts:
Mageia MGASA-2015-0183 389-ds-base 2015-05-03
Scientific Linux SLSA-2015:0895-1 389-ds-base 2015-04-30
CentOS CESA-2015:0895 389-ds-base 2015-04-28
Oracle ELSA-2015-0895 389-ds-base 2015-04-28
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds