|
Family: Debian Local Security Checks --> Category: infos
[DSA785] DSA-785-1 libpam-ldap Vulnerability Scan
Vulnerability Scan Summary DSA-785-1 libpam-ldap
Detailed Explanation for this Vulnerability Test
It has been discovered that libpam-ldap, the Pluggable Authentication
Module allowing LDAP interfaces, ignores the result of an attempt to
authenticate against an LDAP server that does not set an optional data
field.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
version 178-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 178-1sarge1.
We recommend that you upgrade your libpam-ldap package.
Solution : http://www.debian.org/security/2005/dsa-785
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|