OpenLDAP 'ud' Group Writable Vulnerability

The "Interactive LDAP Directory Server query program", ud, which ships with OpenLDAP, is installed by default mode 775. Depending on the group it is installed as this could present a security issue and possibly be used to elevate privileges.


 

Privacy Statement
Copyright 2010, SecurityFocus