Sha256: 055d2ad63335da0da6e3bd1e26ca92b6497bfbb83a7cc637c5f8211c290456b1

Contents?: true

Size: 570 Bytes

Versions: 5

Compression:

Stored size: 570 Bytes

Contents

---
gem: ldap_fluff
cve: 2012-5604
osvdb: 90579
url: http://osvdb.org/show/osvdb/90579
title: Red Hat Subscription Asset Manager rubygem-ldap_fluff Active Directory Authentication Bypass
date: 2012-12-04
description: Red Hat Subscription Asset Manager contains a flaw in the
  rubygem-ldap_fluff component. The issue is triggered when using Microsoft
  Active Directory server as the authentication back-end. This may result in
  authentication no longer being enforced, allowing a remote attacker to
  trivially bypass it.
cvss_v2: 5.0
patched_versions:
  - ">= 0.1.3"

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/ldap_fluff/OSVDB-90579.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/ldap_fluff/OSVDB-90579.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/ldap_fluff/OSVDB-90579.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/ldap_fluff/OSVDB-90579.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/ldap_fluff/OSVDB-90579.yml