{ "modified": "2025-08-09T19:01:28Z", "published": "2011-01-22T22:00:06Z", "id": "CVE-2011-0002", "details": "libuser before 0.57 uses a cleartext password value of (1) !! or (2) x for new LDAP user accounts, which makes it easier for remote attackers to obtain access by specifying one of these values.", "references": [ { "type": "ADVISORY", "url": "http://secunia.com/advisories/42891" }, { "type": "ADVISORY", "url": "http://secunia.com/advisories/42966" }, { "type": "ADVISORY", "url": "http://secunia.com/advisories/43047" }, { "type": "ADVISORY", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:019" }, { "type": "ADVISORY", "url": "http://www.vupen.com/english/advisories/2011/0184" }, { "type": "ADVISORY", "url": "http://www.vupen.com/english/advisories/2011/0201" }, { "type": "ADVISORY", "url": "http://www.vupen.com/english/advisories/2011/0226" }, { "type": "EVIDENCE", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=643227" }, { "type": "WEB", "url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10705" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053365.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053378.html" }, { "type": "WEB", "url": "http://securitytracker.com/id?1024960" }, { "type": "WEB", "url": "http://www.osvdb.org/70421" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2011-0170.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/45791" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64677" }, { "type": "WEB", "url": "https://fedorahosted.org/libuser/browser/NEWS?rev=libuser-0.57" } ] }