Vulnerabilities (CVE)

Filtered by vendor Dcgrendel Subscribe
Filtered by product Vmbuilder
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-5103 2 Dcgrendel, Ubuntu 2 Vmbuilder, Ubuntu Linux 2024-02-28 7.2 HIGH N/A
The (1) python-vm-builder and (2) ubuntu-vm-builder implementations in VMBuilder 0.9 in Ubuntu 8.10 omit the -e option when invoking chpasswd with a root:! argument, which configures the root account with a cleartext password of ! (exclamation point) and allows attackers to bypass intended login restrictions.
CVE-2008-5104 2 Dcgrendel, Ubuntu 2 Vmbuilder, Ubuntu Linux 2024-02-28 7.2 HIGH N/A
Ubuntu 6.06 LTS, 7.10, 8.04 LTS, and 8.10, when installed as a virtual machine by (1) python-vm-builder or (2) ubuntu-vm-builder in VMBuilder 0.9 in Ubuntu 8.10, have ! (exclamation point) as the default root password, which allows attackers to bypass intended login restrictions.