Tag Archives: User(s) With Blank Password

How to Address the “User(s) With Blank Password” Vulnerability

Details of the Vulnerability THREAT: The user ((local service account) has blank password in the shadow file, which allows to connect to the system without entering a password. IMPACT: An attacker may connect to the system by knowing just the username. SOLUTION: Set a password for the user(local service account). ( Many companies security policy… Read More »