Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and LedgerSMB before 1.1.9 allows remote attackers to bypass authentication via unknown vectors that prevents a password check from occurring.Referenceshttp://www.securityfocus.com/archive/1/462375/100/0/threadedhttp://secunia.com/advisories/24496http://secunia.com/advisories/24467http://sourceforge.net/project/shownotes.php?release_id=494462&group_id=175965http://securityreason.com/securityalert/2436http://www.osvdb.org/33622http://www.osvdb.org/33623http://www.securityfocus.com/bid/22889
