Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.104149
Category:Nmap NSE net
Title:Nmap NSE net: ldap-search
Summary:Attempts to perform an LDAP search and returns all matches.;;If no username and password is supplied to the script the Nmap registry is consulted. If the ldap-brute' script has been selected and it found a valid account, this account will be used.;If not anonymous bind will be used as a last attempt.;;SYNTAX:;;ldap.base: If set, the script will use it as a base for the search. By default the defaultNamingContext is retrieved and used.;If no defaultNamingContext is available the script iterates over the available namingContexts;;;ldap.username: If set, the script will attempt to perform an LDAP bind using the username and password;;;ldap.password: If set, used together with the username to authenticate to the LDAP server;;;ldap.qfilter: If set, specifies a quick filter. The library does not support parsing real LDAP filters.;The following values are valid for the filter parameter: computer, users or all. If no value is specified it defaults to all.;;;ldap.attrib: If set, the search will include only the attributes specified. For a single attribute a string value can be used, if;multiple attributes need to be supplied a table should be used instead.;;;ldap.maxobjects: If set, overrides the number of objects returned by the script (default 20).;The value -1 removes the limit completely.
Description:Summary:
Attempts to perform an LDAP search and returns all matches.

If no username and password is supplied to the script the Nmap registry is consulted. If the >ldap-brute' script has been selected and it found a valid account, this account will be used.
If not anonymous bind will be used as a last attempt.

SYNTAX:

ldap.base: If set, the script will use it as a base for the search. By default the defaultNamingContext is retrieved and used.
If no defaultNamingContext is available the script iterates over the available namingContexts


ldap.username: If set, the script will attempt to perform an LDAP bind using the username and password


ldap.password: If set, used together with the username to authenticate to the LDAP server


ldap.qfilter: If set, specifies a quick filter. The library does not support parsing real LDAP filters.
The following values are valid for the filter parameter: computer, users or all. If no value is specified it defaults to all.


ldap.attrib: If set, the search will include only the attributes specified. For a single attribute a string value can be used, if
multiple attributes need to be supplied a table should be used instead.


ldap.maxobjects: If set, overrides the number of objects returned by the script (default 20).
The value -1 removes the limit completely.

CVSS Score:
0.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:N

CopyrightCopyright (C) 2011 NSE-Script: The Nmap Security Scanner; NASL-Wrapper: Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.