CVE-2010-0833

The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before build 8046, and 6.0 before build 8234, as used in HP StorageWorks X9000 Network Storage Systems and possibly other products, uses SetPassword logic when running as part of a root service, which allows remote attackers to bypass authentication for a Likewise Security Authority (lsassd) account whose password is marked as expired.

Weakness

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Software

Name	Vendor	Start Version	End Version
Likewise_open	Likewise	5.4 (including)	5.4 (including)
Likewise_open	Likewise	6.0 (including)	6.0 (including)
Likewise-open	Ubuntu	devel	*
Likewise-open	Ubuntu	lucid	*
Likewise-open	Ubuntu	upstream	*

Potential Mitigations

https://cwe.mitre.org/data/definitions/114.html
https://cwe.mitre.org/data/definitions/115.html
https://cwe.mitre.org/data/definitions/151.html
https://cwe.mitre.org/data/definitions/194.html
https://cwe.mitre.org/data/definitions/22.html
https://cwe.mitre.org/data/definitions/57.html
https://cwe.mitre.org/data/definitions/593.html
https://cwe.mitre.org/data/definitions/633.html
https://cwe.mitre.org/data/definitions/650.html
https://cwe.mitre.org/data/definitions/94.html

References

http://marc.info/?l=bugtraq\u0026m=129719002806096\u0026w=2
http://secunia.com/advisories/40725
http://secunia.com/advisories/40736
http://secunia.com/advisories/43244
http://www.likewise.com/community/index.php/forums/viewthread/772/
http://www.securityfocus.com/archive/1/512643/100/0/threaded
http://www.securitytracker.com/id?1025031
http://www.ubuntu.com/usn/USN-964-1
http://www.vupen.com/english/advisories/2010/1913
http://www.vupen.com/english/advisories/2011/0312

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-0833
CWE	https://cwe.mitre.org/data/definitions/287.html

Improper Authentication

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References