← back
CVE-2010-1596

CVE-2010-1596

EPSS 1.5%
Support Incident Tracker before 3.51, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugs.sitracker.org/view.php?id=1047http://osvdb.org/61945http://secunia.com/advisories/38329https://exchange.xforce.ibmcloud.com/vulnerabilities/55871http://sitracker.org/forum/viewtopic.php?f=4&t=1416979&p=2292http://sitracker.org/wiki/ReleaseNotes351http://www.securityfocus.com/bid/37949