The bind operation of LDAP, as described in RFC 4513, provides a methodwhich allows for authentication of users. For the Simple AuthenticationMethod a user may use the anonymous authentication mechanism, theunauthenticated authentication mechanism, or the name/passwordauthentication mechanism. The unauthenticated authentication mechanismis used when a client who desires to establish an anonymousauthorization state passes a non-zero length distinguished name and azero length password. Most LDAP servers either can be configured toallow this mechanism or allow it by default._Web-based applications which perform the simple bind operation with theclient's credentials are at risk when an anonymous authorization state isestablished. This can occur when the web-based application passes adistinguished name and a zero length password to the LDAP server._Thus, misconfiguring a server with simple bind can trick Symfony intothinking the username/password tuple as valid, potentially leading tounauthorized access.