CVE Vulnerabilities

CVE-2001-0981

Published: Aug 31, 2001 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

HP CIFS/9000 Server (SAMBA) A.01.07 and earlier with the unix password sync option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.

Affected Software

Name Vendor Start Version End Version
Cifs-9000_server Hp * a.01.07

References