Vulnerability Description
lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service (daemon crash) via an Active Directory login attempt that provides a username containing an invalid byte sequence.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Likewise | Likewise Open | 5.3 |
| Vmware | Esx | 4.1 |
| Vmware | Esxi | 4.1 |
Related Weaknesses (CWE)
References
- http://kb.vmware.com/kb/1035108
- http://lists.vmware.com/pipermail/security-announce/2011/000133.html
- http://secunia.com/advisories/44349Vendor Advisory
- http://securityreason.com/securityalert/8240
- http://securitytracker.com/id?1025452
- http://www.likewise.com/community/index.php/forums/viewannounce/1104_27/
- http://www.securityfocus.com/archive/1/517739/100/0/threaded
- http://www.securityfocus.com/bid/47625
- http://www.vmware.com/security/advisories/VMSA-2011-0007.htmlVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67194
- http://kb.vmware.com/kb/1035108
- http://lists.vmware.com/pipermail/security-announce/2011/000133.html
- http://secunia.com/advisories/44349Vendor Advisory
- http://securityreason.com/securityalert/8240
- http://securitytracker.com/id?1025452
FAQ
What is CVE-2011-1786?
CVE-2011-1786 is a vulnerability with a CVSS score of 5.0 (MEDIUM). lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, a...
How severe is CVE-2011-1786?
CVE-2011-1786 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1786?
Check the references section above for vendor advisories and patch information. Affected products include: Likewise Likewise Open, Vmware Esx, Vmware Esxi.