CVE-2008-5103
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-5103
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) python-vm-builder and (2) ubuntu-vm-builder implementations in VMBuilder 0.9 in Ubuntu 8.10 omit the -e option when invoking chpasswd with a root:! argument, which configures the root account with a cleartext password of ! (exclamation point) and allows attackers to bypass intended login restrictions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Ubuntu vm-builder 启动帐户配置本地安全绕过漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Ubuntu是以Debian Linux发行版为基础,开发的一个目前非常流行的Linux桌面版操作系统。 当调用带有root:!自变量的chpasswd时,Ubuntu 8.10版本中的VMBuilder 0.9版本里的(1)python-vm-builder和(2)ubuntu-vm-builder执行工具会用一个cleartext密码-"!"来配置启动帐户,这使得攻击者可以绕过设置的登录限制。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-5103
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-5103
Please Login to view more intelligence information
- https://bugs.launchpad.net/ubuntu/+source/vm-builder/+bug/296841x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2008-5103
Same Patch Batch · n/a · 2008-11-17 · 30 CVEs total
| CVE-2008-4824 | Adobe Flash Player 输入确认错误安全漏洞 | |
| CVE-2008-5107 | Citrix Presentation Server和Desktop Server MSI日志文件信息泄露漏洞 | |
| CVE-2008-5106 | Sami FTP Server 'SamyFtp.binlog'远程拒绝服务漏洞 | |
| CVE-2008-5105 | Sami FTP Server 多个远程拒绝服务漏洞 | |
| CVE-2008-5104 | Ubuntu vm-builder 默认的密码本地安全绕过漏洞 | |
| CVE-2008-5102 | Zope PythonScript 'PythonScriptss'拒绝服务漏洞 | |
| CVE-2008-5101 | OptiPNG BMP阅读器畸形头的图形文件缓冲区溢出漏洞 | |
| CVE-2008-5100 | Microsoft .NET Framework strong name(SN)implementation 加密问题漏洞 | |
| CVE-2008-5099 | Sun Logical Domain Manager 'OpenBoot PROM' 本地安全绕过漏洞 | |
| CVE-2008-5098 | Sun Java System Messaging Server 跨站脚本攻击漏洞 | |
| CVE-2008-4216 | Apple Safari WebKit插件接口安全信息泄露漏洞 | |
| CVE-2008-3644 | Apple Safari 页面缓存用户信息泄露漏洞 | |
| CVE-2008-3623 | Apple Safari安全漏洞 | |
| CVE-2008-5110 | Balabit syslog-ng 权限许可和访问控制问题漏洞 | |
| CVE-2008-5108 | Adobe AIR 未明代码注入漏洞 | |
| CVE-2006-5268 | Trend Micro ServerProtect RPC接口非授权访问漏洞 | |
| CVE-2008-5113 | wordpress REQUEST全局数组跨站请求伪造漏洞 | |
| CVE-2008-5112 | Microsoft活动目录LDAP服务器用户名枚举漏洞 | |
| CVE-2008-5111 | Sun Solaris '3SOCKET' 本地拒绝服务漏洞 | |
| CVE-2008-5025 | Linux Kernel hfs_cat_find_brec()函数本地拒绝服务漏洞 |
Showing top 20 of 30 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2008-5103
No comments yet