The YaST2 LDAP module in yast2-ldap-server on SUSE Linux Enterprise Server 11 (aka SLE11) does not enable the firewall in certain circumstances involving reboots during online updates, which makes it easier for remote attackers to access network services.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html | Vendor Advisory |
http://secunia.com/advisories/35685 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2009-07-05 16:30
Updated : 2024-02-04 17:33
NVD link : CVE-2009-1648
Mitre link : CVE-2009-1648
CVE.ORG link : CVE-2009-1648
JSON object : View
Products Affected
suse
- suse_linux
CWE
CWE-16
Configuration