CVE-2010-0833

Description

The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before build 8046, and 6.0 before build 8234, as used in HP StorageWorks X9000 Network Storage Systems and possibly other products, uses "SetPassword logic" when running as part of a root service, which allows remote attackers to bypass authentication for a Likewise Security Authority (lsassd) account whose password is marked as expired.

References

Link	Tags
http://www.ubuntu.com/usn/USN-964-1	vendor advisory
http://www.securityfocus.com/archive/1/512643/100/0/threaded	mailing list
http://secunia.com/advisories/40725	third party advisory vendor advisory
http://marc.info/?l=bugtraq&m=129719002806096&w=2	vendor advisory
http://secunia.com/advisories/40736	third party advisory vendor advisory
http://secunia.com/advisories/43244	third party advisory vendor advisory
http://www.securitytracker.com/id?1025031	vdb entry
http://www.likewise.com/community/index.php/forums/viewthread/772/	patch vendor advisory
http://www.vupen.com/english/advisories/2010/1913	vdb entry vendor advisory
http://www.vupen.com/english/advisories/2011/0312	vdb entry vendor advisory

Frequently Asked Questions

What is the severity of CVE-2010-0833?: CVE-2010-0833 has been scored as a critical severity vulnerability.
How to fix CVE-2010-0833?: To fix CVE-2010-0833, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2010-0833 being actively exploited in the wild?: It is possible that CVE-2010-0833 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.

Description

Category

CWE-287 – Improper Authentication

References

Frequently Asked Questions