CVE-2005-2069

Impact:
Moderate
Public Date:
2005-06-28
Bugzilla:
1617681: CVE-2005-2069 security flaw

The MITRE CVE dictionary describes this issue as:

pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and allows remote attackers to sniff the password.

Find out more about CVE-2005-2069 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 RHSA-2005:751 2005-10-17
Red Hat Enterprise Linux 4 RHSA-2005:767 2005-10-17
Red Hat Enterprise Linux 3 RHSA-2005:751 2005-10-17

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.