VYPR
Medium severity5.5NVD Advisory· Published Mar 31, 2009· Updated Jun 16, 2026

CVE-2009-1073

CVE-2009-1073

Description

nss-ldapd before 0.6.8 uses world-readable permissions for the /etc/nss-ldapd.conf file, which allows local users to obtain a cleartext password for the LDAP server by reading the bindpw field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.