CVE-2011-2694


Severity : Low
Published : 2011-07-29
Modified : 2011-10-03
Base Score : 2.6
Details : Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.10 allows remote authenticated administrators to inject arbitrary web script or HTML via the username parameter to the passwd program (aka the user field to the Change Password page).
Product/Version :  
Per: http://www.samba.org/samba/security/CVE-2011-2694  
 
'Note that SWAT must be enabled in order for this vulnerability to be exploitable. By default, SWAT is *not* enabled on a Samba install.'  
 
 
 
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
 
 
 


CVE Vulnerabilities List CVE-2011
CVE-2011-5000CVE-2011-4944CVE-2011-4940CVE-2011-4914
CVE-2011-4913CVE-2011-4885CVE-2011-4622CVE-2011-4619
CVE-2011-4609CVE-2011-4578CVE-2011-4577CVE-2011-4576
CVE-2011-4566CVE-2011-4330CVE-2011-4324CVE-2011-4317
CVE-2011-4313CVE-2011-4132CVE-2011-4130CVE-2011-4128
CVE-2011-4127CVE-2011-4110CVE-2011-4109CVE-2011-4108
CVE-2011-4102CVE-2011-4101CVE-2011-4081CVE-2011-4077
CVE-2011-4029CVE-2011-4028CVE-2011-3919CVE-2011-3639
CVE-2011-3638CVE-2011-3637CVE-2011-3607CVE-2011-3597
CVE-2011-3593CVE-2011-3483CVE-2011-3389CVE-2011-3378
CVE-2011-3368CVE-2011-3363CVE-2011-3360CVE-2011-3359
CVE-2011-3353CVE-2011-3348CVE-2011-3266CVE-2011-3210
CVE-2011-3209CVE-2011-3192CVE-2011-3191CVE-2011-3188
CVE-2011-3149CVE-2011-3148CVE-2011-3102CVE-2011-3048
CVE-2011-3026CVE-2011-2898CVE-2011-2896CVE-2011-2895
CVE-2011-2834CVE-2011-2821CVE-2011-2728CVE-2011-2724
CVE-2011-2716CVE-2011-2699CVE-2011-2698CVE-2011-2695
CVE-2011-2694CVE-2011-2692CVE-2011-2691CVE-2011-2690
CVE-2011-2597CVE-2011-2534CVE-2011-2525CVE-2011-2522
CVE-2011-2501CVE-2011-2496CVE-2011-2495CVE-2011-2494
CVE-2011-2492CVE-2011-2491CVE-2011-2484CVE-2011-2483
CVE-2011-2213CVE-2011-2212CVE-2011-2202CVE-2011-2200
CVE-2011-2199CVE-2011-2192CVE-2011-2182CVE-2011-2175
CVE-2011-2174CVE-2011-2022CVE-2011-1959CVE-2011-1958
CVE-2011-1957CVE-2011-1945CVE-2011-1944CVE-2011-1938
CVE-2011-1928CVE-2011-1833CVE-2011-1776CVE-2011-1770
CVE-2011-1767CVE-2011-1760CVE-2011-1759CVE-2011-1751
CVE-2011-1750CVE-2011-1747CVE-2011-1746CVE-2011-1745
CVE-2011-1677CVE-2011-1676CVE-2011-1675CVE-2011-1659
CVE-2011-1658CVE-2011-1593CVE-2011-1592CVE-2011-1591
CVE-2011-1590CVE-2011-1585CVE-2011-1577CVE-2011-1573
CVE-2011-1521CVE-2011-1495CVE-2011-1494CVE-2011-1493
CVE-2011-1477CVE-2011-1476CVE-2011-1398CVE-2011-1182
CVE-2011-1180CVE-2011-1173CVE-2011-1172CVE-2011-1171
CVE-2011-1170CVE-2011-1163CVE-2011-1162CVE-2011-1155
CVE-2011-1098CVE-2011-1095CVE-2011-1093CVE-2011-1090
CVE-2011-1089CVE-2011-1083CVE-2011-1082CVE-2011-1080
CVE-2011-1078CVE-2011-1071CVE-2011-1044CVE-2011-1023
CVE-2011-1017CVE-2011-1015CVE-2011-1013CVE-2011-1012
CVE-2011-1010CVE-2011-0997CVE-2011-0719CVE-2011-0713
CVE-2011-0711CVE-2011-0695CVE-2011-0539CVE-2011-0538
CVE-2011-0536CVE-2011-0521CVE-2011-0465CVE-2011-0463
CVE-2011-0445CVE-2011-0419CVE-2011-0216CVE-2011-0014