|Title:||eLDAPo cleartext passwords|
The remote host is hosting eLDAPo, a PHP-based CGI
suite designed to perform LDAP queries.
This application stores the passwords to the LDAP server
in clear text in its source file. An attacker could read
the source code of index.php and may use the information
contained to gain credentials on a third party server.
Solution : Upgrade to eLDAPo 1.18 or newer
Risk factor : Medium
BugTraq ID: 7535|
|Copyright||This script is Copyright (C) 2003 Renaud Deraison|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.