CVE-2011-0002

EPSS 2.3%

Published: 1/22/2011Modified: 4/28/2026

Description

libuser before 0.57 uses a cleartext password value of (1) !! or (2) x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values.

Affected packages (1)

Debian/libuserfrom 0, < 1:0.56.9.dfsg.1-1.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-0002