CVE-2015-5246

First published: Tue Sep 01 2015(Updated: )

larry campbell reports via the foreman bug tracker: This was found on Foreman 1.9.0: I came across this issue by chance. I was forced to change my Active Directory password today. After doing so, I then (mistakenly) attempted to log onto Foreman with my previous password and was able to successfully log in. The new password also worked. I tried with other browsers and even another workstation that I had never logged onto and all attempts allowed me to log on with my non-valid previous password. Perhaps something on foreman/passenger/ruby/etc is caching my credential and not re-checking? Initial Setup: Have an Active Directory enviornment available for LDAP Authentication. Setup LDAP Authentication Source in Foreman and have a test user account created in Active Directory. Steps to recreate: 1. Log on to Foreman with the Active Directory user. This should succeed. Log off. 2. Change your Active Directory account's password. 3. Log on to Foreman with the Active Directory user, and use the previous password. This should fail with authentication denied method, however it succeeds. Upstream references: <a href="http://projects.theforeman.org/issues/11471">http://projects.theforeman.org/issues/11471</a>

Credit: secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/type
• agent/softwarecombine
• agent/first-publish-date
• collector/mitre-cve
• source/MITRE
• agent/severity
• agent/last-modified-date
• agent/references
• agent/author
• agent/remedy
• agent/weakness
• agent/event
• agent/description
• agent/tags
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2015-5246
• vendor/theforeman
• canonical/theforeman foreman
• version/theforeman foreman/1.9.0