|
CVE Reference: CVE-2006-1772
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2006-1772
|
|
Description:
debconf in Debian GNU/Linux, when configuring mnogosearch in the mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat file instead of the restricted passwords.dat for storing the cleartext database administrator password in the mnogosearch-common/database_admin_pass record, which allows local users to view the password.
|
|
CVE Status:
Candidate
|
|
References:
SAID
Secunia Advisory: SA19589
MISC
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361775
BID
17477
|
|
|
Return to the previous page.
|
