2 matches found
CVE-2008-5104
CVE-2008-5104 describes a default root password vulnerability in VMBuilder-based workflows on Ubuntu 6.06 LTS/7.10/8.04 LTS/8.10 when VM images are created with VMBuilder 0.9 in Ubuntu 8.10 (via python-vm-builder or ubuntu-vm-builder). The root password is set to !, allowing an attacker with acce...
CVE-2008-5103
CVE-2008-5103 affects VMBuilder 0.9 in Ubuntu 8.10, where the python-vm-builder and ubuntu-vm-builder implementations omit the -e option when calling chpasswd with a root:! argument. This results in the root account being configured with a cleartext password of !, bypassing intended login restric...