CVE-2014-8764

EPSS 1.2%

Published: 10/22/2014Modified: 5/27/2026

Also known as:DEBIAN-CVE-2014-8764

Description

DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null (\0) character, which triggers an anonymous bind.

Affected packages (1)

Debian/dokuwikifrom 0, < 0.0.20140929.a-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8764