Bug 96311

Summary: VUL-0: CVE-2005-2069: pam_ldap and nss_ldap not using tls for referred connections to OpenLDAP
Product: [Novell Products] SUSE Security Incidents Reporter: Dennis Conrad <dcon>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: VERIFIED DUPLICATE QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P5 - None    
Version: unspecified   
Target Milestone: ---   
Hardware: All   
OS: SLES 9   
Whiteboard: CVE-2005-2069: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Dennis Conrad 2005-07-13 11:57:19 UTC 
(Stolen from http://bugs.gentoo.org/show_bug.cgi?id=96767 ):

pam_ldap will send credentials in plaintext if a slave ldap server refers it to
a master server during a password change operation. The ldap.conf "ssl
start_tls" setting is not enforced on referrals (and openldap doesn't currently
allow it due to a bug).

More references:

http://secunia.com/advisories/15906/

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2069
Comment 1 Marcus Meissner 2005-07-13 11:59:15 UTC 

*** This bug has been marked as a duplicate of 94355 ***
Comment 2 Thomas Biege 2009-10-13 21:32:53 UTC 
CVE-2005-2069: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N)