2014-10-22 14:00:00
redhat
PUBLISHED
DokuWiki before 2014-05-05b, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a password starting with a null (0) character and a valid user name, which triggers an unauthenticated bind.