MDVSA-2011:019 -- Mandriva libuserID: oval:org.secpod.oval:def:300394 | Date: (C)2012-01-07 (M)2021-09-30 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in libuser: libuser before 0.57 uses a cleartext password value of !! or x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values . Packages for 2009.0 are provided as of the Extended Maintenance Program
Platform: |
Mandriva Linux 2010.0 |
Mandriva Linux 2010.1 |
Mandriva Linux 2009.0 |