← back
CVE-2008-2367

CVE-2008-2367

EPSS 0.2%
Red Hat Certificate System 7.2 uses world-readable permissions for password.conf and unspecified other configuration files, which allows local users to discover passwords by reading these files.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=451998http://secunia.com/advisories/33540http://securitytracker.com/id?1021608https://exchange.xforce.ibmcloud.com/vulnerabilities/48021https://rhn.redhat.com/errata/RHSA-2009-0006.htmlhttps://rhn.redhat.com/errata/RHSA-2009-0007.htmlhttp://www.securityfocus.com/bid/33288http://www.vupen.com/english/advisories/2009/0145