389-ds-base version prior to 1.3.5.19 and 1.3.6.7 are vulnerable to password brute-force attacks during account lockout due to different return codes returned on password attempts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject 389 directory server 1.3.6.7 |
||
fedoraproject 389 directory server 1.3.5.19 |