CVE-2007-2766
CVE-2007-2766
lib/backup-methods.sh in Backup Manager before 0.7.6 provides the MySQL password as a plaintext command line argument, which allows local users to obtain this password by listing the process and its arguments, related to lib/backup-methods.sh.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugzilla.backup-manager.org/cgi-bin/show_bug.cgi?id=146http://osvdb.org/34780https://exchange.xforce.ibmcloud.com/vulnerabilities/34489http://www2.backup-manager.org/Release076http://www.backup-manager.org/pipermail/backup-manager-commits/2007-January/000212.htmlhttp://www.vupen.com/english/advisories/2007/2412