{"id":"CVE-2011-0002","details":"libuser before 0.57 uses a cleartext password value of (1) !! or (2) x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values.","modified":"2026-04-10T03:41:35.492973Z","published":"2011-01-22T22:00:06Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/42891"},{"type":"ADVISORY","url":"http://secunia.com/advisories/42966"},{"type":"ADVISORY","url":"http://secunia.com/advisories/43047"},{"type":"ADVISORY","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2011:019"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2011/0184"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2011/0201"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2011/0226"},{"type":"EVIDENCE","url":"https://bugzilla.redhat.com/show_bug.cgi?id=643227"},{"type":"WEB","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053365.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053378.html"},{"type":"WEB","url":"http://securitytracker.com/id?1024960"},{"type":"WEB","url":"http://www.osvdb.org/70421"},{"type":"WEB","url":"http://www.redhat.com/support/errata/RHSA-2011-0170.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/45791"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/64677"},{"type":"WEB","url":"https://fedorahosted.org/libuser/browser/NEWS?rev=libuser-0.57"}],"schema_version":"1.7.5"}