|
|
CVE Reference: CVE-2006-1772 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-1772 |
|
|
Description: debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/database_admin_pass record, which allows local users to view the password. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA19589 MISC http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361775 BID 17477 |
|
| Return to the previous page. |
