← volver
CVE-2016-7553

CVE-2016-7553

EPSS 0.4%
The buf.pl script before 2.20 in Irssi before 0.8.20 uses weak permissions for the scrollbuffer dump file created between upgrades, which might allow local users to obtain sensitive information from private chat conversations by reading the file.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/irssi/scripts.irssi.org/commit/f1b1eb154baa684fad5d65bf4dff79c8ded8b65ahttps://irssi.org/security/buf_pl_sa_2016.txthttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7OM3WHWQ7RIAOZSOZZUM4CUYGKSIAGJJ/http://www.openwall.com/lists/oss-security/2016/09/24/1http://www.openwall.com/lists/oss-security/2016/09/26/4http://www.securityfocus.com/bid/93155