software composition analysis
Product
SAST
Catch vulnerabilities as you develop DAST
Test live web applications like an attacker SCA
Secure open-source and supply chain MAST
Secure mobile apps from code to store Compliance
Align with standards while shipping secure code
Resources
Vulnerability database Healthy Package
Blog News
Documentation
Pricing Partners About Us Log In
software composition analysis

Java : Unsafe LDAP access control: anonymous bind

Classification

OWASP Top 10 2013 A1-Injection A4-Insecure Direct Object References A7-Missing Function Level Access Control OWASP Top 10 2017 A5-Broken Access Control OWASP Top 10 2021 A1-Broken Access Control OWASP ASVS Access Control Access Control Access Control Access Control Authentication Authentication Authentication PCI DSS 4.0 2.2.5 6.2.4 HIPAA §164.312 (a)(1) §164.312 (a)(2)(i) §164.312 (d) CWE CWE-90 CWE-284 CWE-287 CWE-862 CWE-1027 CWE-1030 CWE-1033 CWE/SANS Top 25 2011 CWE-862 CWE/SANS Top 25 2021 CWE-287 CWE-862

Overview

In the absence of proper access control, LDAP query execution via anonymous bind may give an attacker unauthorized access to LDAP directories.

LDAP is an application-level protocol for accessing and maintaining distributed directory information services (X.500 directory service). If LDAP query is based on data from an untrusted source (e.g., user input) and the data do not pass validation, an attacker can modify the query and execute it with the application rights.

Anonymous bind is equivalent to the lack of authentication when executing LDAP-queries.

References

  1. OWASP Top 10 2013-A4-Insecure Direct Object References
  2. CWE-285: Improper Authorization
  3. OWASP Top 10 2017-A5-Broken Access Control
  4. CWE-284
  5. CWE CATEGORY: OWASP Top Ten 2017 Category A1 - Injection
  6. CWE-1030
  7. CWE-90

See also

Java : Undocumented feature: security parameters modification
Java : Method clone() does not call super.clone()
Java : Unsafe password storage