CVE-2011-1024
openldap: forwarded bind failure messages cause success
Severity Score
4.6
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote authenticated users to bypass external-program authentication by sending an invalid password to a slave server.
chain.c en back-ldap en OpenLDAP v2.4.x anteriores a v2.4.24 cuando se utiliza una configuración maestro-esclavo con una superposición de la cadena y policy_forward_updates (también conocido como authentication-failure forwarding), permite a usuarios remotos autenticados eludir la autenticación por programa externo mediante el envío de una contraseña no válida para un servidor esclavo.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-02-14 CVE Reserved
- 2011-03-20 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (22)
| URL | Tag | Source |
|---|---|---|
| http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 | X_refsource_confirm | |
| http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 | X_refsource_confirm | |
| http://openwall.com/lists/oss-security/2011/02/24/12 | Mailing List | |
| http://openwall.com/lists/oss-security/2011/02/25/13 | Mailing List | |
| http://secunia.com/advisories/43708 | Third Party Advisory | |
| http://secunia.com/advisories/43718 | Third Party Advisory | |
| http://securitytracker.com/id?1025188 | Vdb Entry | |
| http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607 | X_refsource_confirm | |
| http://www.openldap.org/lists/openldap-technical/201004/msg00247.html | Mailing List | |
| https://bugzilla.novell.com/show_bug.cgi?id=674985 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/43331 | 2017-01-07 | |
| http://security.gentoo.org/glsa/glsa-201406-36.xml | 2017-01-07 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2011:055 | 2017-01-07 | |
| http://www.mandriva.com/security/advisories?name=MDVSA-2011:056 | 2017-01-07 | |
| http://www.redhat.com/support/errata/RHSA-2011-0346.html | 2017-01-07 | |
| http://www.redhat.com/support/errata/RHSA-2011-0347.html | 2017-01-07 | |
| http://www.ubuntu.com/usn/USN-1100-1 | 2017-01-07 | |
| http://www.vupen.com/english/advisories/2011/0665 | 2017-01-07 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=680466 | 2011-03-10 | |
| https://access.redhat.com/security/cve/CVE-2011-1024 | 2011-03-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.6 Search vendor "Openldap" for product "Openldap" and version "2.4.6" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.7 Search vendor "Openldap" for product "Openldap" and version "2.4.7" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.8 Search vendor "Openldap" for product "Openldap" and version "2.4.8" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.9 Search vendor "Openldap" for product "Openldap" and version "2.4.9" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.10 Search vendor "Openldap" for product "Openldap" and version "2.4.10" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.11 Search vendor "Openldap" for product "Openldap" and version "2.4.11" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.12 Search vendor "Openldap" for product "Openldap" and version "2.4.12" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.13 Search vendor "Openldap" for product "Openldap" and version "2.4.13" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.14 Search vendor "Openldap" for product "Openldap" and version "2.4.14" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.15 Search vendor "Openldap" for product "Openldap" and version "2.4.15" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.16 Search vendor "Openldap" for product "Openldap" and version "2.4.16" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.17 Search vendor "Openldap" for product "Openldap" and version "2.4.17" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.18 Search vendor "Openldap" for product "Openldap" and version "2.4.18" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.19 Search vendor "Openldap" for product "Openldap" and version "2.4.19" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.20 Search vendor "Openldap" for product "Openldap" and version "2.4.20" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.21 Search vendor "Openldap" for product "Openldap" and version "2.4.21" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.22 Search vendor "Openldap" for product "Openldap" and version "2.4.22" | - |
Affected
| ||||||
| Openldap Search vendor "Openldap" | Openldap Search vendor "Openldap" for product "Openldap" | 2.4.23 Search vendor "Openldap" for product "Openldap" and version "2.4.23" | - |
Affected
| ||||||