CVE-2012-1105

Published: Dec 5, 2019

Modified: Aug 6, 2024

PUBLISHED

Description

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner.

Vendor	Product	Versions
Jasig Project	php-pear-CAS	affected `1.2.2`

References

https://security-tracker.debian.org/tracker/CVE-2012-1105

x_refsource_MISC

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1105

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2012/03/05/7

x_refsource_MISC

https://gitlab.vsb.cz/kal0178/sixmon/blob/b18bcde090dc38fc968a0b1e38d1dab08b8c369e/web/lib/CAS/CAS-1.3.5/docs/ChangeLog

x_refsource_CONFIRM

https://www.securityfocus.com/bid/52280

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-1105

Description

Affected Products

References