Описание
Cobbler before 2.0.4 uses an incorrect umask value, which allows local users to have an unspecified impact by leveraging world writable permissions for files and directories.
Отчет
This issue did not affect the versions of cobbler as shipped with Red Hat Satellite version 5.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Satellite 5.3 | Server | Not affected | ||
| Red Hat Satellite 5.4 | Server | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-732
https://bugzilla.redhat.com/show_bug.cgi?id=693647cobbler: Insecure umask by creating /tftpboot/pxelinux.cfg/* files after cobbler sync
4.6 Medium
CVSS2
Связанные уязвимости
nvd
около 15 лет назад
Cobbler before 2.0.4 uses an incorrect umask value, which allows local users to have an unspecified impact by leveraging world writable permissions for files and directories.
debian
около 15 лет назад
Cobbler before 2.0.4 uses an incorrect umask value, which allows local ...
github
больше 3 лет назад
Cobbler before 2.0.4 uses an incorrect umask value, which allows local users to have an unspecified impact by leveraging world writable permissions for files and directories.
4.6 Medium
CVSS2