CVE-2011-2694


Severity : Low
Published : 2011-07-29
Modified : 2011-10-03
Base Score : 2.6
Details : Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page).
Product/Version :  
Per: http://www.samba.org/samba/security/CVE-2011-2694  
 
'Note that SWAT must be enabled in order for this vulnerability to be exploitable. By default, SWAT is *not* enabled on a Samba install.'  
 
 
 
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
 
 
 


CVE Vulnerabilities List CVE-2011
CVE-2011-5000CVE-2011-4944CVE-2011-4940CVE-2011-4914
CVE-2011-4913CVE-2011-4885CVE-2011-4622CVE-2011-4619
CVE-2011-4609CVE-2011-4578CVE-2011-4577CVE-2011-4576
CVE-2011-4566CVE-2011-4330CVE-2011-4324CVE-2011-4317
CVE-2011-4313CVE-2011-4132CVE-2011-4130CVE-2011-4128
CVE-2011-4127CVE-2011-4110CVE-2011-4109CVE-2011-4108
CVE-2011-4102CVE-2011-4101CVE-2011-4089CVE-2011-4081
CVE-2011-4077CVE-2011-4029CVE-2011-4028CVE-2011-3919
CVE-2011-3639CVE-2011-3638CVE-2011-3637CVE-2011-3607
CVE-2011-3605CVE-2011-3604CVE-2011-3597CVE-2011-3593
CVE-2011-3483CVE-2011-3389CVE-2011-3378CVE-2011-3368
CVE-2011-3363CVE-2011-3360CVE-2011-3359CVE-2011-3353
CVE-2011-3348CVE-2011-3266CVE-2011-3210CVE-2011-3209
CVE-2011-3192CVE-2011-3191CVE-2011-3188CVE-2011-3149
CVE-2011-3148CVE-2011-3102CVE-2011-3048CVE-2011-3026
CVE-2011-2898CVE-2011-2896CVE-2011-2895CVE-2011-2834
CVE-2011-2821CVE-2011-2728CVE-2011-2724CVE-2011-2716
CVE-2011-2699CVE-2011-2698CVE-2011-2695CVE-2011-2694
CVE-2011-2692CVE-2011-2691CVE-2011-2690CVE-2011-2597
CVE-2011-2534CVE-2011-2525CVE-2011-2522CVE-2011-2501
CVE-2011-2496CVE-2011-2495CVE-2011-2494CVE-2011-2492
CVE-2011-2491CVE-2011-2484CVE-2011-2483CVE-2011-2213
CVE-2011-2212CVE-2011-2202CVE-2011-2200CVE-2011-2199
CVE-2011-2192CVE-2011-2182CVE-2011-2175CVE-2011-2174
CVE-2011-2022CVE-2011-1959CVE-2011-1958CVE-2011-1957
CVE-2011-1945CVE-2011-1944CVE-2011-1938CVE-2011-1928
CVE-2011-1835CVE-2011-1834CVE-2011-1833CVE-2011-1832
CVE-2011-1831CVE-2011-1776CVE-2011-1770CVE-2011-1767
CVE-2011-1760CVE-2011-1759CVE-2011-1751CVE-2011-1750
CVE-2011-1749CVE-2011-1747CVE-2011-1746CVE-2011-1745
CVE-2011-1677CVE-2011-1676CVE-2011-1675CVE-2011-1659
CVE-2011-1658CVE-2011-1593CVE-2011-1592CVE-2011-1591
CVE-2011-1590CVE-2011-1585CVE-2011-1577CVE-2011-1573
CVE-2011-1521CVE-2011-1495CVE-2011-1494CVE-2011-1493
CVE-2011-1477CVE-2011-1476CVE-2011-1398CVE-2011-1182
CVE-2011-1180CVE-2011-1173CVE-2011-1172CVE-2011-1171
CVE-2011-1170CVE-2011-1163CVE-2011-1162CVE-2011-1155
CVE-2011-1098CVE-2011-1095CVE-2011-1093CVE-2011-1090
CVE-2011-1089CVE-2011-1083CVE-2011-1082CVE-2011-1080
CVE-2011-1078CVE-2011-1071CVE-2011-1044CVE-2011-1023
CVE-2011-1017CVE-2011-1015CVE-2011-1013CVE-2011-1012
CVE-2011-1010CVE-2011-0997CVE-2011-0719CVE-2011-0713
CVE-2011-0711CVE-2011-0695CVE-2011-0539CVE-2011-0538
CVE-2011-0536CVE-2011-0521CVE-2011-0465CVE-2011-0463
CVE-2011-0445CVE-2011-0419CVE-2011-0216CVE-2011-0014