CVE-2006-3878

Published: Jul 27, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Opsware Network Automation System (NAS) 6.0 installs /etc/init.d/mysql with insecure permissions, which allows local users to read the root password for the MySQL MAX database or gain privileges by modifying /etc/init.d/mysql.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20060824 Re: Opsware NAS 6.0 reveals MySQL 'root' password

mailing-list

x_refsource_BUGTRAQ

20060724 Opsware NAS 6.0 reveals MySQL 'root' password

mailing-list

x_refsource_BUGTRAQ

19126

vdb-entry

x_refsource_BID

1016566

vdb-entry

x_refsource_SECTRACK

1289

third-party-advisory

x_refsource_SREASON

21192

third-party-advisory

x_refsource_SECUNIA

nas-mysql-plaintext-password(27995)

vdb-entry

x_refsource_XF

20060727 Re: Opsware NAS 6.0 reveals MySQL 'root' password

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-3878

Description

Affected Products

References