info
discussion
exploit
solution
references
PADL nss_ldap '/etc/nss_ldapd.conf' Local Information Disclosure Vulnerability
References:
Bug 491623 - nss_ldap: LDAP service configuration file shipped with world reada
(Red Hat)
libnss-ldapd: /etc/nss-ldapd.conf is created world-readable, exposing bindpw
(Leigh James)
nss_ldap Homepage
(Padl Software)
Privacy Statement
Copyright 2010, SecurityFocus
