Updating shared library rc m openldap
Provided below is a brief description and example of how this vulnerability can arise.
I don't see these instructions anywhere on the php site.
Maybe they're on the Open LDAP site, but I thought it would be useful to have here as well.
Interesting point,if you can't bind to active directory with the error "49: Invalid Credentials", you can get the extended error output from the ldap_get_option function, using the option: LDAP_OPT_DIAGNOSTIC_MESSAGE.
My connection code was as follows (nothing new here, I don't think): A number of examples and implementations of authentication schemes which use LDAP simple binds to authenticate users fail to properly sanitize user-submitted data.This can allow for an anonymous user to authenticate to a web-based application as an existing user.