CVE-2011-2467

SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5.4 through 6.1, and Likewise Enterprise 6.0, allows local users to execute arbitrary SQL commands via unspecified vectors.

Published: Jul 27, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-2467
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.8
AV:A/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
likewise / likewise_open	5.4	5.4.x
likewise / likewise_open	6.0	6.0.x
likewise / likewise_open	6.1	6.1.x

http://secunia.com/advisories/45276
http://secunia.com/advisories/45326
http://www.likewise.com/community/index.php/forums/viewannounce/1212_6/
http://www.securityfocus.com/bid/48816
http://www.ubuntu.com/usn/USN-1171-1
https://bugs.launchpad.net/ubuntu/+source/likewise-open/+bug/802748
https://exchange.xforce.ibmcloud.com/vulnerabilities/68765
https://launchpadlibrarian.net/74204969/LWSA-2011-002.txt

Vulnerability Database

289,697

CVE-2011-2467