Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Off-by-one error in passwd 0.68 and earlier, when using the --stdin option, causes passwd to use the first 78 characters of a password instead of the first 79, which results in a small reduction of the search space required for brute force attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mandrake Linux passwd未明安全漏洞
Vulnerability Description
Mandrake Linux是一款开放源代码操作系统。 Mandrake Linux的passwd实现存在问题,可能导致安全级别降低,用户不能登录等问题。 根据报告,Mandrake Linux通过stdin提供给passwd的密码比预想的要少一字符,目前还不清楚是否会在交互提示状况下发生。这可导致用户密码存储不正确或用户不能登录。 另外PAM不正确初始化和"safe and proper""操作存在一定问题。
CVSS Information
N/A
Vulnerability Type
N/A