ID CVE-2006-1183
Summary The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.
References
Vulnerable Configurations
  • cpe:2.3:o:ubuntu:ubuntu_linux:5.10
    cpe:2.3:o:ubuntu:ubuntu_linux:5.10
CVSS
Base: 7.2 (as of 13-03-2006 - 14:56)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability. CVE-2006-1183. Local exploit for linux platform
id EDB-ID:1579
last seen 2016-01-31
modified 2006-03-12
published 2006-03-12
reporter Kristian Hermansen
source https://www.exploit-db.com/download/1579/
title Ubuntu Breezy 5.10 Installer Password Disclosure Vulnerability
nessus via4
NASL family Ubuntu Local Security Checks
NASL id UBUNTU_USN-262-1.NASL
description Karl Oie discovered that the Ubuntu 5.10 installer failed to clean passwords in the installer log files. Since these files were world-readable, any local user could see the password of the first user account, which has full sudo privileges by default. The updated packages remove the passwords and additionally make the log files readable only by root. This does not affect the Ubuntu 4.10, 5.04, or the upcoming 6.04 installer. However, if you upgraded from Ubuntu 5.10 to the current development version of Ubuntu 6.04 ('Dapper Drake'), please ensure that you upgrade the passwd package to version 1:4.0.13-7ubuntu2 to fix the installer log files. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen 2019-02-21
modified 2018-08-15
plugin id 21069
published 2006-03-13
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=21069
title Ubuntu 5.10 : Ubuntu 5.10 installer vulnerability (USN-262-1)
refmap via4
bid 17086
confirm https://launchpad.net/distros/ubuntu/+source/shadow/+bug/34606
osvdb 23868
sectrack 1015761
secunia 19200
ubuntu USN-262-1
vupen ADV-2006-0927
xf ubuntu-installer-password-disclosure(25170)
Last major update 07-03-2011 - 21:32
Published 13-03-2006 - 07:18
Last modified 03-10-2018 - 17:36
Back to Top