CVE-2009-5021 Information

Description

Cobbler before 1.6.1 does not properly determine whether an installation has the default password which makes it easier for attackers to obtain access by using this password.

Reference

http://people.fedoraproject.org/~shenson/cobbler/cobbler-2.0.8.tar.gz https://exchange.xforce.ibmcloud.com/vulnerabilities/64734