Max CVSS | 6.8 | Min CVSS | 4.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2011-1024 | 4.6 |
chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote authenticated users to bypass external-program aut
|
07-01-2017 - 02:59 | 20-03-2011 - 02:00 | |
CVE-2011-1025 | 6.8 |
bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which allows remote attackers to bypass intended access restrictions via an arbitrary password.
|
07-01-2017 - 02:59 | 20-03-2011 - 02:00 |