Unrated severityNVD Advisory· Published Jul 25, 2001· Updated Jun 16, 2026
CVE-2001-1106
CVE-2001-1106
Description
The default configuration of Sambar Server 5 and earlier uses a symmetric key that is compiled into the binary program for encrypting passwords, which could allow local users to break all user passwords by cracking the key or modifying a copy of the sambar program to call the decryption procedure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:sambar:sambar_server:4.1:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:sambar:sambar_server:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:4.2.1_production:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:4.4:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta5:*:*:*:*:*:*
- (no CPE)range: <=5
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/3095nvdExploitPatchVendor Advisory
- www.securityfocus.com/archive/1/199418nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/6909nvd
News mentions
0No linked articles in our index yet.