Ubuntu Installer Empty Root Password Security Issue - Secunia Advisories - Vulnerability Intelligence

Ubuntu Installer Empty Root Password Security Issue
Secunia Advisory:	SA21022	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2006-07-13
Last Update:	2006-07-18
Popularity:	7,716 views

Critical:	Less critical
Impact:	Privilege escalation
Where:	Local system
Solution Status:	Vendor Patch

OS:	Ubuntu Linux 6.06

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2006-3597

Description: A security issue has been reported in Ubuntu, which potentially can be exploited by malicious, local users to gain escalated privileges. The problem is that the installer may set the root password blank and not locked when installing from the Alternate install CD or the Server install CD in a certain way. Solution: Apply updated packages. -- Ubuntu 6.06 LTS -- Source archives: http://security.ubuntu.com/ubuntu/poo...adow/shadow_4.0.13-7ubuntu3.2.diff.gz Size/MD5: 204800 1b29e1615364944d98ea95498d6058b8 http://security.ubuntu.com/ubuntu/poo...s/shadow/shadow_4.0.13-7ubuntu3.2.dsc Size/MD5: 885 8ccf50d026fa2c4cffe85330f0d0985a http://security.ubuntu.com/ubuntu/pool/main/s/shadow/shadow_4.0.13.orig.tar.gz Size/MD5: 1622557 034fab52e187e63cb52f153bb7f304c8 http://security.ubuntu.com/ubuntu/poo.../user-setup/user-setup_1.1ubuntu4.dsc Size/MD5: 678 544762def71fb062b6d6f5484a4d7c45 http://security.ubuntu.com/ubuntu/poo...er-setup/user-setup_1.1ubuntu4.tar.gz Size/MD5: 98334 f8d648ce6a9a007740b0e175b92385eb Architecture independent packages: http://security.ubuntu.com/ubuntu/poo...p/user-setup-udeb_1.1ubuntu4_all.udeb Size/MD5: 79418 4ec2af1d5e09f129d486c142575f4081 http://security.ubuntu.com/ubuntu/poo...r-setup/user-setup_1.1ubuntu4_all.deb Size/MD5: 161864 bc876d6099a323cebd2ffc94df41db06 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/poo...dow/login_4.0.13-7ubuntu3.2_amd64.deb Size/MD5: 249450 bfdba1450cbe14f6c71f5d9dee5df9b3 http://security.ubuntu.com/ubuntu/poo...ow/passwd_4.0.13-7ubuntu3.2_amd64.deb Size/MD5: 683510 547ad48ac45f6f11cacbd268f42b152a i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/poo...adow/login_4.0.13-7ubuntu3.2_i386.deb Size/MD5: 240938 8500a4c2ab53f11b3fb8cb7fb4e00c78 http://security.ubuntu.com/ubuntu/poo...dow/passwd_4.0.13-7ubuntu3.2_i386.deb Size/MD5: 616346 a29d90e0ae7c7c70cbeffcbfba6bf04e powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/poo...w/login_4.0.13-7ubuntu3.2_powerpc.deb Size/MD5: 251380 bd408187e20f19222e2b4fefe8706552 http://security.ubuntu.com/ubuntu/poo.../passwd_4.0.13-7ubuntu3.2_powerpc.deb Size/MD5: 665158 4975fe8598b4a8adc98fabcee1b4cb8e sparc architecture (Sun SPARC/UltraSPARC) http://security.ubuntu.com/ubuntu/poo...dow/login_4.0.13-7ubuntu3.2_sparc.deb Size/MD5: 239930 85dde4bfa6d09491338f70efe9d6d336 http://security.ubuntu.com/ubuntu/poo...ow/passwd_4.0.13-7ubuntu3.2_sparc.deb Size/MD5: 620124 b0fcdadde2568b1a8324e2500718a18b Provided and/or discovered by: The vendor credits Iwan Pieterse. Changelog: 2006-07-18: Added CVE reference. Original Advisory: http://www.ubuntu.com/usn/usn-316-1

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

New advisories:	19
New vulnerabilities:	31
Updated advisories:	28

Moderately // 156 views

My PHP Indexer "d" File Disclosure Vulnerability

Moderately // 165 views

NewLife Blogger "nlb3" SQL Injection Vulnerability

Moderately // 160 views

Ayco Okul "linkid" SQL Injection Vulnerability

Less // 166 views

ScriptsEz Mini Hosting Panel "dir" File Disclosure

Not // 206 views

WinFTP "PASV" Denial of Service Vulnerability

Moderately // 209 views

Real Estates Classifieds "cat" SQL Injection Vulnerability

Moderately // 278 views

Joomla Ignite Gallery Component "gallery" SQL Injection

Moderately // 240 views

Joomla Mad4Joomla Mailforms Component "jid" SQL Injection

Moderately // 210 views

MunzurSoft Wep Portal W3 "kat" SQL Injection Vulnerability

Moderately // 245 views

Joomla OwnBiblio Component "catid" SQL Injection

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.