Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA785] DSA-785-1 libpam-ldap


Vulnerability Assessment Details

[DSA785] DSA-785-1 libpam-ldap

Vulnerability Assessment Summary
DSA-785-1 libpam-ldap

Detailed Explanation for this Vulnerability Assessment

It has been discovered that libpam-ldap, the Pluggable Authentication
Module permiting LDAP interfaces, ignores the result of an attempt to
authenticate against an LDAP server that does not set an optional data
field.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
version 178-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 178-1sarge1.
We recommend that you upgrade your libpam-ldap package.


Solution : http://www.debian.org/security/2005/dsa-785
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Dell Poweredge 2600 Scl Server RAID Controller Key Board CN-0J1055 J1055
$8.34
Dell Poweredge 2600 Scl Server RAID Controller Key Board CN-0J1055 J1055 pictureDELL SERVERS - 400-AJSB
$336.53
DELL SERVERS - 400-AJSB pictureDell PowerEdge R710 Server Sliding Rapid Rail Kit P242J M997J Left/Right
$70.0
Dell PowerEdge R710 Server Sliding Rapid Rail Kit P242J M997J Left/Right  pictureDELL SERVERS - 400-AJQD
$346.94
DELL SERVERS - 400-AJQD picture


Discussions

No Discussions have been posted on this vulnerability.