Описание
The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.
The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1183
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25170
- https://launchpad.net/distros/ubuntu/+source/shadow/+bug/34606
- https://usn.ubuntu.com/262-1
- http://secunia.com/advisories/19200
- http://securitytracker.com/id?1015761
- http://www.osvdb.org/23868
- http://www.securityfocus.com/bid/17086
- http://www.vupen.com/english/advisories/2006/0927
EPSS
CVE ID
Связанные уязвимости
The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.
The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.
The Ubuntu 5.10 installer does not properly clear passwords from the i ...
EPSS