Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Improper Authentication Vulnerability - CVE-2014-9043 - Vulnerability Database
ownCloud

ownCloud Improper Authentication Vulnerability - CVE-2014-9043

Medium
Reference: CVE-2014-9043
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-9043
Title: ownCloud Improper Authentication Vulnerability
Overview:

The user_ldap (aka LDAP user and group backend) application in ownCloud before 5.0.18 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass authentication via a null byte in the password and a valid user name which triggers an unauthenticated bind.