First published: Tue Apr 04 2006(Updated: )
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Busybox Busybox | =1.1.1 | |
Avaya Aura Application Enablement Services | =4.01 | |
Avaya Aura Application Enablement Services | =4.1 | |
Avaya Aura Sip Enablement Services | <5.0 | |
Avaya Message Networking | ||
Avaya Messaging Storage Server | >=3.0<4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.