CVE-2014-0132
EPSS 0.45%發布日:2014/3/18修改日:2026/4/28
也稱為:DEBIAN-CVE-2014-0132
描述
The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.
受影響套件(1)
- Debian/389-ds-basefrom 0, < 1.3.2.9-1.1