oss-sec mailing list archives
Re: CVE request: MantisBT Null byte poisoning in LDAP authentication
From: Damien Regad <dregad () mantisbt org>
Date: Sat, 13 Sep 2014 14:15:27 +0200
On 2014-09-12 20:36, cve-assign () mitre org wrote:
Use CVE-2014-6387.
Thank you. Will post back here when MantisBT 1.2.18 is released. Until then, affected systems can apply the patch manually.
Current thread:
- CVE request: MantisBT Null byte poisoning in LDAP authentication Damien Regad (Sep 12)
- Re: CVE request: MantisBT Null byte poisoning in LDAP authentication cve-assign (Sep 12)
- Re: CVE request: MantisBT Null byte poisoning in LDAP authentication Damien Regad (Sep 13)
- Re: CVE request: MantisBT Null byte poisoning in LDAP authentication cve-assign (Sep 12)