OpenLDAP 1.2.11 and previous versions improperly installs the ud binary with group write permissions, which could allow any user in that group to replace the binary with a Trojan horse.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openldap openldap 1.2.10 |
||
openldap openldap 1.2.7 |
||
openldap openldap 1.2.8 |
||
openldap openldap 1.2.9 |
||
openldap openldap 1.2.11 |