Phone : +91 9582 90 7788 | Email : sales@itmonteur.net

Register & Request Quote | Submit Support Ticket

Home » Cyber Security News » Alpine Linux Docker images found using NULL password for the admin account

Alpine Linux Docker images found using NULL password for the admin account

  • This vulnerability (CVE-2019-5021) has been found in v3.3 impacting all Glider Labs Alpine Linux Docker images as well as official images.
  • Researchers noted that existing systems should be modified to either set a custom password for the root account or disable the root account.

Security researchers from Cisco Talos have revealed that Alpine Linux Docker images distributed via the official Docker Hub portal have not been using any password for the root account.

What is the impact?

This vulnerability (CVE-2019-5021) has been found in v3.3 impacting all Glider Labs Alpine Linux Docker images as well as official images.

Moreover, servers and workstations that have been provisioned/installed from Alpine Linux Docker images could be compromised by attackers who can authenticate using the root user and NULL password.

Web-facing systems are also impacted by the vulnerability.

More details on the vulnerability

This security flaw was first earlier discovered in August 2015 and patched in November, however, the flaw has been accidentally re-opened three weeks later in December 2015.

This flaw has been re-discovered again by a Cisco Umbrella researcher in January 2019.

Researchers noted that existing systems should be modified to either set a custom password for the root account or disable the root account. Additionally, companies and users who have older Alpine Linux Docker images integrated inside install scripts/routines should modify the Docker image to disable the root account or should update to a newer Alpine Linux Docker image.

“The likelihood of exploitation of this vulnerability is environment-dependent, as successful exploitation requires that an exposed service or application utilize Linux PAM, or some other mechanism which uses the system shadow file as an authentication database,” Cisco Talos said.

Information Security - InfoSec - Cyber Security - Firewall Providers Company in India

What is Firewall? A Firewall is a network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies. At its most basic, a firewall is essentially the barrier that sits between a private internal network and the public Internet.

 

Secure your network at the gateway against threats such as intrusions, Viruses, Spyware, Worms, Trojans, Adware, Keyloggers, Malicious Mobile Code (MMC), and other dangerous applications for total protection in a convenient, affordable subscription-based service. Modern threats like web-based malware attacks, targeted attacks, application-layer attacks, and more have had a significantly negative effect on the threat landscape. In fact, more than 80% of all new malware and intrusion attempts are exploiting weaknesses in applications, as opposed to weaknesses in networking components and services. Stateful firewalls with simple packet filtering capabilities were efficient blocking unwanted applications as most applications met the port-protocol expectations. Administrators could promptly prevent an unsafe application from being accessed by users by blocking the associated ports and protocols.

 

Firewall Firm is an IT Monteur Firewall Company provides Managed Firewall Support, Firewall providers , Firewall Security Service Provider, Network Security Services, Firewall Solutions India , New Delhi - India's capital territory , Mumbai - Bombay , Kolkata - Calcutta , Chennai - Madras , Bangaluru - Bangalore , Bhubaneswar, Ahmedabad, Hyderabad, Pune, Surat, Jaipur, Firewall Service Providers in India

Sales Number : +91 9582 90 7788 | Support Number : +91-9654016484
Sales Email : sales@itmonteur.net | Support Email : support@itmonteur.net

Register & Request Quote | Submit Support Ticket