Volution clients 1.0.7 and previous versions attempt to contact the computer creation daemon (CCD) when an LDAP authentication failure occurs, which allows remote malicious users to fully control clients via a Trojan horse Volution server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
caldera volution 1.0 |
||
caldera volution 1.0.6 |
||
caldera volution 1.0.7 |