Back to search
CVE-2012-2679
Published: Oct 22, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Red Hat Network (RHN) Configuration Client (rhncfg-client) in rhncfg before 5.10.27-8 uses weak permissions (world-readable) for /var/log/rhncfg-actions, which allows local users to obtain sensitive information about the rhncfg-client actions by reading the file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=825275
x_refsource_CONFIRM
50978
third-party-advisory
x_refsource_SECUNIA
55934
vdb-entry
x_refsource_BID
1027661
vdb-entry
x_refsource_SECTRACK
netconfclient-rhncfgactions-info-disclosure(79260)
vdb-entry
x_refsource_XF
RHSA-2012:1369
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now