PublicDate: 2007-10-11 10:17:00 UTC
Candidate: CVE-2007-5373
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5373
Description:
 ldapscripts 1.4 and 1.7 sends a password as a command line argument when
 calling some LDAP programs, which might allow local users to read the
 password by listing the process and its arguments, as demonstrated by a
 call to ldappasswd in the _changepassword function.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 
upstream_ldapscripts: needs-triage
dapper_ldapscripts: ignored (reached end-of-life)
edgy_ldapscripts: needed (reached end-of-life)
feisty_ldapscripts: needed (reached end-of-life)
gutsy_ldapscripts: needed (reached end-of-life)
hardy_ldapscripts: released (1.7.1-2)
intrepid_ldapscripts: released (1.7.1-2)
jaunty_ldapscripts: released (1.7.1-2)
karmic_ldapscripts: released (1.7.1-2)
devel_ldapscripts: released (1.7.1-2)