CVE-2001-1359

Name of the Vulnerable Software and Affected Versions Volution clients versions 1.0.7 and earlier

Description The issue allows remote attackers to fully control clients via a Trojan horse Volution server when an LDAP authentication failure occurs, as the clients attempt to contact the computer creation daemon (CCD).

Recommendations For Volution clients versions 1.0.7 and earlier, consider restricting access to the CCD until a fix is available. As a temporary workaround, avoid using the LDAP authentication feature in these versions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.