Auth bypass in Fedoraproject 389_directory_server

CVE-2014-0132

The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.

Vulnerability class: Broken Authentication

EPSS: 0.004 (64.0th percentile) — read the EPSS interpretation.

Affected products

Fedoraproject 389_directory_server — versions 1.2.11.1, 1.2.11.5, 1.2.11.6
N/a — versions n/a

Weakness classification (CWE)

CWE-287 — Improper Authentication

References

secalert@redhat.com (x_refsource_CONFIRM, Exploit)
57427 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
RHSA-2014:0292 (x_refsource_REDHAT, vendor-advisory)
57412 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Patch)