Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-0833

EPSS 0.91% · P76
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-0833

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The pam_lsass library in Likewise Open 5.4 and CIFS 5.4 before build 8046, and 6.0 before build 8234, as used in HP StorageWorks X9000 Network Storage Systems and possibly other products, uses "SetPassword logic" when running as part of a root service, which allows remote attackers to bypass authentication for a Likewise Security Authority (lsassd) account whose password is marked as expired.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Likewise Open和CIFS pam_lsass库认证绕过漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Likewise Open 是一个Linux、Unix、Mac OS下的应用程序用来将这些系统的机器加入到Windows活动目录的安全认证。 在HP StorageWorks X9000 Network Storage Systems及其他的产品中使用的Likewise Open 5.4和CIFS build 8046之前的5.4版本,以及build 8234之前的6.0版本中的pam_lsass库在作为根服务的一部分运行时使用了“SetPassword logic”。远程攻击者可利用该漏洞绕过密码标记过
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-0833

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-0833

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-07-27 · 27 CVEs total

CVE-2009-4962Adammo Fat Player栈缓冲区溢出漏洞
CVE-2009-4974Sweetphp TotalCalendar 'box_display.php'目录遍历漏洞
CVE-2009-4973Sweetphp TotalCalendar 'rss.php'SQL注入漏洞
CVE-2009-4972SimpleID 'index.php'跨站脚本攻击漏洞
CVE-2009-4971TYPO3 AJAX Chat扩展件未明SQL注入漏洞
CVE-2009-4970TYPO3 t3m_affiliate扩展件未明SQL注入漏洞
CVE-2009-4969TYPO3 Solidbase Bannermanagement扩展件未明SQL注入漏洞
CVE-2009-4968TYPO3 Event Registration扩展件未明SQL注入漏洞
CVE-2009-4967TYPO3 Car扩展件未明SQL注入漏洞
CVE-2009-4966TYPO3 AST ZipCodeSearch扩展件未明SQL注入漏洞
CVE-2009-4965TYPO3 AIRware Lexicon跨站件SQL注入漏洞
CVE-2009-4964Ksplayer KSP 2006 FINAL栈缓冲区溢出漏洞
CVE-2009-4963TYPO3 Commerce扩展件跨站脚本攻击漏洞
CVE-2010-0211OpenLDAP modrdn请求内存破坏漏洞
CVE-2009-4961Lanai Core默认配置信息泄露漏洞
CVE-2009-4960Lanai Core 'modules/backup/download.php'目录遍历漏洞
CVE-2009-4959TYPO3 TT3M E-Mail Marketing工具扩展件SQL注入漏洞
CVE-2009-4958EMO Breader Manager 'video.php'SQL注入漏洞
CVE-2010-2704HP OpenView网络节点管理器ov.dll库远程溢出漏洞
CVE-2010-2703HP OpenView网络节点管理器ov.dll库execvp_nc函数远程栈溢出漏洞

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-0833

No comments yet

Leave a comment