Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0981

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-0981
Last Modified 10 Sep 2008 03:09:24
Published 31 Aug 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0981

Summary

HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.

Vulnerable Systems

Application

  • Hp Cifs-9000 Server A.01.07


References

HP - HPSBUX0108-164

XF - hp-cifs-change-passwords(7051)


Last Updated: 27 May 2016 10:36:28