CVE-2005-0248
Solaris 8 and 9 - Unauthenticated Account Access via Blank Password in SMC User Creation
Title source: llmDescription
The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers to break into those accounts.
References (6)
Core 6
Core References
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12260
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1012860
Patch vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57717-1
Vendor Advisory third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/p-096.shtml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18868
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13803/
Scores
EPSS
0.0057
EPSS Percentile
68.7%
Details
Status
published
Products (3)
sun/solaris
8.0
sun/solaris
9.0 (2 CPE variants)
sun/sunos
5.8
Published
May 02, 2005
Tracked Since
Feb 18, 2026