CVE-2017-1000215

Name of the Vulnerable Software and Affected Versions XRootD versions 4.6.0 and below

Description The issue is related to the lack of input sanitization in LDAP requests, which can be exploited by a remote attacker to execute arbitrary code. This can result in remote code execution due to an unauthenticated shell command injection.

Recommendations For XRootD versions 4.6.0 and below, update to a version above 4.6.0 to resolve the issue. As a temporary workaround, consider restricting access to the LDAP request functionality to minimize the risk of exploitation.