initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging failed authentication attempts by remote attackers.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-28T16:00:00

Updated: 2024-08-07T15:39:13.700Z

Reserved: 2007-10-28T00:00:00

Link: CVE-2007-5686

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-10-28T17:08:00.000

Modified: 2018-10-15T21:45:59.050

Link: CVE-2007-5686

cve-icon Redhat

No data.