Access Control Vulnerability in System Security Services Daemon Affects Multiple Versions
CVE-2013-0287

Currently unrated

Key Information:

Vendor

Fedoraproject

Status
Sssd
Vendor
CVE Published:
21 March 2013

What is CVE-2013-0287?

A flaw in the Simple Access Provider of System Security Services Daemon (SSSD) versions 1.9.0 through 1.9.4 allows remote authenticated users to circumvent intended access restrictions. This is due to improper enforcement of the simple_deny_groups setting when the Active Directory provider is utilized, which may expose sensitive resources to unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://lists.opensuse.org/opensuse-updates/2013-03/msg001...
vendor-advisoryx_refsource_SUSE
http://secunia.com/advisories/52704
third-party-advisoryx_refsource_SECUNIA
http://git.fedorahosted.org/cgit/sssd.git/patch/?id=7619b...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.