exploitDog

CVE-2006-1844

Опубликовано: 19 апр. 2006

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The Debian installer for the (1) shadow 4.0.14 and (2) base-config 2.53.10 packages includes sensitive information in world-readable log files, including preseeded passwords and pppoeconf passwords, which might allow local users to gain privileges.

Ссылки

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=356939
Patch
http://secunia.com/advisories/19170
Vendor Advisory
http://www.osvdb.org/23922
Patch
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=356939
Patch
http://secunia.com/advisories/19170
Vendor Advisory
http://www.osvdb.org/23922
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:debian:base-config:2.53.10:*:*:*:*:*:*:*

cpe:2.3:a:debian:shadow:4.0.14:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00069

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2006-1844

debian

больше 19 лет назад

The Debian installer for the (1) shadow 4.0.14 and (2) base-config 2.5 ...

GHSA-f7w6-w5p4-76pj

github

больше 3 лет назад

The Debian installer for the (1) shadow 4.0.14 and (2) base-config 2.53.10 packages includes sensitive information in world-readable log files, including preseeded passwords and pppoeconf passwords, which might allow local users to gain privileges.

EPSS

Процентиль: 22%

0.00069

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other