The SUSE Audit Log Keeper daemon before 0.2.1-0.4.6.1 for SUSE Manager and Spacewalk uses world-readable permissions for /etc/auditlog-keeper.conf, which allows local users to obtain passwords by reading this file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-08-08T10:00:00Z
Updated: 2024-09-16T18:19:37.647Z
Reserved: 2012-01-09T00:00:00Z
Link: CVE-2012-0421
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2012-08-08T10:26:18.457
Modified: 2012-08-08T10:26:18.457
Link: CVE-2012-0421
Redhat
No data.