CVE-2007-3193

lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/37219
http://secunia.com/advisories/25595	Patch Vendor Advisory
http://secunia.com/advisories/26784
http://secunia.com/advisories/26880
http://security.gentoo.org/glsa/glsa-200709-10.xml
http://sourceforge.net/project/shownotes.php?release_id=514820
http://sourceforge.net/tracker/index.php?func=detail&aid=1732882&group_id=6121&atid=106121
http://www.debian.org/security/2007/dsa-1371
http://www.vupen.com/english/advisories/2007/2144
https://exchange.xforce.ibmcloud.com/vulnerabilities/34819
http://osvdb.org/37219
http://secunia.com/advisories/25595	Patch Vendor Advisory
http://secunia.com/advisories/26784
http://secunia.com/advisories/26880
http://security.gentoo.org/glsa/glsa-200709-10.xml
http://sourceforge.net/project/shownotes.php?release_id=514820
http://sourceforge.net/tracker/index.php?func=detail&aid=1732882&group_id=6121&atid=106121
http://www.debian.org/security/2007/dsa-1371
http://www.vupen.com/english/advisories/2007/2144
https://exchange.xforce.ibmcloud.com/vulnerabilities/34819

Configurations

Configuration 1 (hide)

cpe:2.3:a:phpwiki:phpwiki:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-06-12 23:30

Updated : 2025-04-09 00:30

NVD link : CVE-2007-3193

Mitre link : CVE-2007-3193

CVE.ORG link : CVE-2007-3193

JSON object : View

Products Affected

phpwiki

phpwiki

CWE

NVD-CWE-Other

{"id": "CVE-2007-3193", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-06-12T23:30:00.000", "references": [{"url": "http://osvdb.org/37219", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/25595", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/26784", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/26880", "source": "cve@mitre.org"}, {"url": "http://security.gentoo.org/glsa/glsa-200709-10.xml", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=514820", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1732882&group_id=6121&atid=106121", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2007/dsa-1371", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/2144", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34819", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/37219", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/25595", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/26784", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/26880", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-200709-10.xml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=514820", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1732882&group_id=6121&atid=106121", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2007/dsa-1371", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/2144", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34819", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "lib/WikiUser/LDAP.php in PhpWiki before 1.3.13p1, when the configuration lacks a nonzero PASSWORD_LENGTH_MINIMUM, might allow remote attackers to bypass authentication via an empty password, which causes ldap_bind to return true when used with certain LDAP implementations."}, {"lang": "es", "value": "lib/WikiUser/LDAP.php en PhpWiki anterior a 1.3.13p1, cuando la configuraci\u00f3n carece de un valor PASSWORD_LENGTH_MINIMUM distinto de cero, podr\u00eda permitir a atacantes remotos evitar la autenticaci\u00f3n mediante una contrase\u00f1a vac\u00eda, lo cual provoca que ldap_bind devuelva \"true\" (verdadero) cuando se usa con determinadas implementaciones de LDAP."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:phpwiki:phpwiki:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B71D417-92CC-4EED-8C2C-97073D665AEB", "versionEndIncluding": "1.3.13"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}