Vulnerabilities

CVE-2013-0287

by Fred · 21/03/2013

The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which allows remote authenticated users to bypass intended access restrictions.

Date published : 2013-03-21

http://www.securityfocus.com/bid/58593

http://git.fedorahosted.org/cgit/sssd.git/patch/?id=26590d31f492dbbd36be6d0bde46a4bd3b221edb

Similar

Tags: Cybersecurity Alert