CVE-2006-1058

Опубликовано: 04 апр. 2006

Источник: debian

Описание

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
busybox	fixed	1:1.1.3-1		package
busybox	not-affected		woody	package
busybox	not-affected		sarge	package

Связанные уязвимости

CVE-2006-1058

CVSS3: 5.5

ubuntu

почти 20 лет назад

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.

CVE-2006-1058

redhat

около 20 лет назад

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.

CVE-2006-1058

CVSS3: 5.5

nvd

почти 20 лет назад

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.

GHSA-25qj-gfr4-9mhj

CVSS3: 5.5

github

почти 4 года назад

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.