CVE-2011-0002 in libuserinfo

Summary

libuser before 0.57 uses a cleartext password value of (1) !! or (2) x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/07/2010

Disclosure

01/22/2011

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-310 (Confirmed)

CVSS

6.5

EPSS

0.02270

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0002
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0002/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!