On Freitag, 13. März 2009, Michael Meyer wrote:
> *** Jan-Oliver Wagner <[email protected]> wrote:
> > The script is not deocumented in the way that it
> > explains why it is an Security Hole.
> > The text says, it shows the information that can be pulled from the ldap,
> > but in fact it is truncated and only the first couple of bytes are shown in
> > the
> > report.
> >
> > Any LDAP experts around? ;-)
>
> http://markmail.org/message/ry5kkd6mrpzgzj42
> http://www.openldap.org/lists/openldap-software/200605/msg00191.html
> http://kuerzer.de/hf3OS3QpP
> http://kuerzer.de/gR18v5O9j
> http://www.mail-archive.com/[email protected]/msg17819.html
seems we should downgrade the severity of this finding ?
Best
Jan
--
Dr. Jan-Oliver Wagner | ++49-541-335083-0 | http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-plugins mailing list
[email protected]
http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
