Computer Security
[EN] securityvulns.ru no-pyccku


HP StorageWorks X9000 unauthorized access
Published:14.02.2011
Source:
SecurityVulns ID:11434
Type:remote
Threat Level:
5/10
CVE:CVE-2010-0833 (The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before build 8046, and 6.0 before build 8234, uses "SetPassword logic" when running as part of a root service, which allows remote attackers to bypass authentication for a Likewise Security Authority (lsassd) account whose password is marked as expired.)
Original documentdocumentHP, [security bulletin] HPSBST02630 SSRT1000385 rev.1 - HP StorageWorks X9000 Network Storage Systems, Remote Unauthenticated Access (14.02.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod