← CVECheck
HomeVulnerabilities

CVE-2001-1106 — HIGH severity vulnerability (The default configuration of Sambar Server 5 and earlier use)

The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.

CVE IDCVE-2001-1106
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-07-25
Last modified2026-04-16
DescriptionThe default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →