Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) python-vm-builder and (2) ubuntu-vm-builder implementations in VMBuilder 0.9 in Ubuntu 8.10 omit the -e option when invoking chpasswd with a root:! argument, which configures the root account with a cleartext password of ! (exclamation point) and allows attackers to bypass intended login restrictions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Ubuntu vm-builder 启动帐户配置本地安全绕过漏洞
Vulnerability Description
Ubuntu是以Debian Linux发行版为基础,开发的一个目前非常流行的Linux桌面版操作系统。 当调用带有root:!自变量的chpasswd时,Ubuntu 8.10版本中的VMBuilder 0.9版本里的(1)python-vm-builder和(2)ubuntu-vm-builder执行工具会用一个cleartext密码-"!"来配置启动帐户,这使得攻击者可以绕过设置的登录限制。
CVSS Information
N/A
Vulnerability Type
N/A