CVE-2014-0132
389 Directory Server <1.2.11.26 - Privilege Escalation
Title source: llmDescription
The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SASL/GSSAPI bind.
References (5)
Scores
EPSS
0.0057
EPSS Percentile
68.4%
Classification
CWE
CWE-287
Status
draft
Affected Products (18)
fedoraproject/389_directory_server
< 1.2.11.25
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
fedoraproject/389_directory_server
... and 3 more
Timeline
Published
Mar 18, 2014
Tracked Since
Feb 18, 2026