HP CIFS/9000 Server (SAMBA) A.01.07 and previous versions with the "unix password sync" option enabled calls the passwd program without specifying the username of the user making the request, which could cause the server to change the password of a different user.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp cifs-9000 server |