PT-2013-1811 · Ruby+2 · Ldap Fluff+2
Og Maciel
·
Publicado
2013-03-01
·
Atualizado
2022-05-14
·
CVE-2012-5604
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
ldap fluff gem for Ruby (affected versions not specified)
Red Hat CloudForms version 1.1
Description
The issue allows remote attackers to bypass authentication via unspecified vectors when using Active Directory for authentication.
Recommendations
For Red Hat CloudForms version 1.1, consider disabling the use of Active Directory for authentication until a fix is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Active Directory
Red Hat Cloudforms
Ldap Fluff