Univention Bugzilla – Bug 51654
Do not document vulnerability with which stundent can gain Administrator permissions
Last modified: 2020-07-16 17:42:44 CEST
The LDAP ACL's suggested in https://wiki.univention.de/index.php/Cool_Solution_-_User_Self-Service_with_extended_Attributes are vulnerable. With these ACL'S a UCS@school student can make himself a UCS@school Admin. (Why? See explanation in Bug #39952 comment 12). Nowerdays, the manual ACL registration is also not necessary as you can simply set UCR variables: ucr set self-service/ldap_attributes=univentionFreeAttribute1 +++ This bug was initially created as a clone of Bug #39952 +++
The article was for old UCS versions only, I removed it leaving only the link for UCS 4.4 Self Service.