CVE-2012-2668

NONECVSS 0.0

0.0

libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default cipher suite even when TLSCipherSuite is set, which might cause OpenLDAP to use weaker ciphers than intended and make it easier for remote attackers to obtain sensitive information.

🔗 References (30)

secalert@redhathttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676309
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1151.html
secalert@redhathttp://seclists.org/fulldisclosure/2019/Dec/26
secalert@redhathttp://security.gentoo.org/glsa/glsa-201406-36.xml
secalert@redhathttp://www.openldap.org/devel/gitweb.cgi?p=openldap.git%3Ba=commitdiff%3Bh=2c2bb2e
secalert@redhathttp://www.openldap.org/its/index.cgi?findid=7285
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/06/05/4
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/06/06/1
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/06/06/2
secalert@redhathttp://www.securityfocus.com/bid/53823
secalert@redhathttp://www.securitytracker.com/id?1027127
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=825875
secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/76099
secalert@redhathttps://seclists.org/bugtraq/2019/Dec/23
secalert@redhathttps://support.apple.com/kb/HT210788

Is Your Infrastructure Affected by CVE-2012-2668?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-2668

📅 Published

🔄 Last Modified

🔗 References (30)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-2668?