CVE-2014-0132

The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
VendorProductVersion
fedoraproject389_directory_server
𝑥
≤ 1.2.11.25
fedoraproject389_directory_server
1.2.11.1
fedoraproject389_directory_server
1.2.11.5
fedoraproject389_directory_server
1.2.11.6
fedoraproject389_directory_server
1.2.11.8
fedoraproject389_directory_server
1.2.11.9
fedoraproject389_directory_server
1.2.11.10
fedoraproject389_directory_server
1.2.11.11
fedoraproject389_directory_server
1.2.11.12
fedoraproject389_directory_server
1.2.11.13
fedoraproject389_directory_server
1.2.11.14
fedoraproject389_directory_server
1.2.11.15
fedoraproject389_directory_server
1.2.11.17
fedoraproject389_directory_server
1.2.11.19
fedoraproject389_directory_server
1.2.11.20
fedoraproject389_directory_server
1.2.11.21
fedoraproject389_directory_server
1.2.11.22
fedoraproject389_directory_server
1.2.11.23
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
389-ds-base
bullseye
1.4.4.11-2
fixed
bookworm
2.3.1+dfsg1-1
fixed
sid
3.1.1+dfsg1-2
fixed
trixie
3.1.1+dfsg1-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
389-ds-base
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
utopic
not-affected
trusty
dne
saucy
ignored
quantal
ignored
precise
ignored
lucid
dne
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2014-0292.html
http://secunia.com/advisories/57412
http://secunia.com/advisories/57427
https://fedorahosted.org/389/changeset/76acff12a86110d4165f94e2cba13ef5c7ebc38a/
https://fedorahosted.org/389/ticket/47739
http://rhn.redhat.com/errata/RHSA-2014-0292.html
http://secunia.com/advisories/57412
http://secunia.com/advisories/57427
https://fedorahosted.org/389/changeset/76acff12a86110d4165f94e2cba13ef5c7ebc38a/
https://fedorahosted.org/389/ticket/47739