Lucene search
Ubuntu.comUB:CVE-2010-2940HistoryAug 30, 2010 - 12:00 a.m.
CVE-2010-2940
2010-08-3000:00:00
ubuntu.com
ubuntu.com
9
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.008
Percentile
81.2%
The auth_send function in providers/ldap/ldap_auth.c in System Security
Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind
are enabled, allows remote attackers to bypass the authentication
requirements of pam_authenticate via an empty password.
Related
fedora
fedora
[SECURITY] Fedora 13 Update: sssd-1.2.2-21.fc13
2010-09-02 20:44:45
[SECURITY] Fedora 14 Update: sssd-1.3.0-30.fc14
2010-09-02 04:01:23
[SECURITY] Fedora 13 Update: sssd-1.3.0-40.fc13
2011-01-21 22:55:50
nessus
nessus
Fedora 12 : sssd-1.2.2-20.fc12 (2010-13557)
2010-09-03 00:00:00
Fedora 14 : sssd-1.3.0-30.fc14 (2010-13474)
2010-09-02 00:00:00
Fedora 13 : sssd-1.2.2-21.fc13 (2010-13549)
2010-09-03 00:00:00
debiancve
debiancve
CVE-2010-2940
2010-08-30 20:00:02
openvas
openvas
Fedora Update for sssd FEDORA-2010-13549
2010-09-07 00:00:00
Fedora Update for sssd FEDORA-2010-13549
2010-09-07 00:00:00
Fedora Update for sssd FEDORA-2010-13474
2010-12-02 00:00:00
cve
cve
CVE-2010-2940
2010-08-30 20:00:02
cvelist
cvelist
CVE-2010-2940
2010-08-30 19:00:00
prion
prion
Authentication flaw
2010-08-30 20:00:00
nvd
nvd
CVE-2010-2940
2010-08-30 20:00:02
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.008
Percentile
81.2%
Related for UB:CVE-2010-2940