CVE-2011-0002

2011-01-2222:00:00

Debian Security Bug Tracker

security-tracker.debian.org

0.008 Low

EPSS

Percentile

81.0%

JSON

libuser before 0.57 uses a cleartext password value of (1) !! or (2) x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values.

OSVersionArchitecturePackageVersionFilename
Debian12alllibuser< 1:0.56.9.dfsg.1-1.1libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian11alllibuser< 1:0.56.9.dfsg.1-1.1libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian10alllibuser< 1:0.56.9.dfsg.1-1.1libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian999alllibuser< 1:0.56.9.dfsg.1-1.1libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian13alllibuser< 1:0.56.9.dfsg.1-1.1libuser_1:0.56.9.dfsg.1-1.1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	libuser	< 1:0.56.9.dfsg.1-1.1	libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian	11	all	libuser	< 1:0.56.9.dfsg.1-1.1	libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian	10	all	libuser	< 1:0.56.9.dfsg.1-1.1	libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian	999	all	libuser	< 1:0.56.9.dfsg.1-1.1	libuser_1:0.56.9.dfsg.1-1.1_all.deb
Debian	13	all	libuser	< 1:0.56.9.dfsg.1-1.1	libuser_1:0.56.9.dfsg.1-1.1_all.deb

CVE-2011-0002

Related