CVE-2011-1786

medium

VMware

CVSS v3 Base Score

5.0

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Score

2.8%

Exploitation probability in 30 days

Top 14% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

None

Availability

Published: May 3, 2011 (5490 days ago)

Last Modified: April 29, 2026

Vendor: VMware

Source: NVD

Description

lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service (daemon crash) via an Active Directory login attempt that provides a username containing an invalid byte sequence.

CWE

CWE-399

Affected Products

likewise likewise openvmware esxvmware esxi

References

🔗 kb.vmware.com 🔗 lists.vmware.com 🔗 secunia.com 🔗 securityreason.com 🔗 securitytracker.com

CVE-2011-1786

Vulnerability Report

Description

CWE

Affected Products

References