Searching readable software vulnerabilities

A vulnerability in Caldera Open Administration

Administration | vulnerability | Caldera | System | Open |

A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable.


RealSystem G2 server stores the administrator p

world-readable | administrator | configuration | RealSystem | privileges | cleartext | password | allows | stores | server | users | local | which | gain | file |

RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.


Real Media RealServer (rmserver) 6.0.3.353 stor

RealServer | Media | Real |

Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.


DIT TransferPro installs devices with world-rea

world-readable | world-writable | TransferPro | permissions | installs | through | devices | damage | driver | device | disks | users | could | which | local | allow | DIT |

DIT TransferPro installs devices with world-readable and world-writable permissions, which could allow local users to damage disks through the ff device driver.


netstation.navio-com.rte 1.1.0.1 configuration

netstationnavio-comrte |

netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable.


kdesu in kdelibs package creates world readable

authentication | containing | privileges | temporary | readable | kdelibs | package | creates | allow | users | local | which | world | files | kdesu | gain | info | can |

kdesu in kdelibs package creates world readable temporary files containing authentication info, which can allow local users to gain privileges.


BasiliX 1.1.0 saves attachments in a world read

BasiliX |

BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments.


Mantis 0.17.5 and earlier stores its database p

Mantis |

Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.


Kolab stores OpenLDAP passwords in plaintext in

world-readable | privileges | slapdconf | installed | plaintext | passwords | OpenLDAP | allows | stores | users | local | which | Kolab | gain | file | may |

Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows local users to gain privileges.


Ansel 1.2 through 2.0 uses insecure default per

permissions | directories | attackers | insecure | readable | through | default | access | remote | allows | Ansel | which | gain | uses | web |

Ansel 1.2 through 2.0 uses insecure default permissions, which allows remote attackers to gain access to web readable directories.


The /.inlook/.crypt file for inlook 0.7.3 and e

/inlook/crypt | inlook | file |

The /.inlook/.crypt file for inlook 0.7.3 and earlier is installed with world readable permissions, which allows local users to obtain user POP3 credentials.


Einstein 1.0 stores credit card information in

world-readable | information | walletsdat | plaintext | Einstein | allows | stores | credit | steal | local | users | which | card | file |

Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file, which allows local users to steal the information.


reportbug before 2.62 creates the .reportbugrc

reportbug | before |

reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords.


Wine 20050211 and earlier creates temp files wi

Wine |

Wine Friday, February 11, 2005 and earlier creates temp files with world readable permissions and predictable file names, which allows local users to obtain sensitive information, such as passwords.


Cybration ICUII 7.0 stores passwords in plainte

world-readable | privileges | plaintext | passwords | Cybration | icuiiini | allows | stores | users | ICUII | local | which | file | gain |

Cybration ICUII 7.0 stores passwords in plaintext in the world-readable icuii.ini file, which allows local users to gain privileges.


Capturix ScanShare 1.06 build 50 stores sensiti

ScanShare | Capturix |

Capturix ScanShare 1.06 build 50 stores sensitive information such as the password in cleartext in capturixss_cfg.ini, which is readable by local users.


Backup Manager 0.5.8a creates an archive reposi

permissions | repository | attackers | readable | writable | creates | Manager | archive | allows | modify | Backup | world | which | read | 058a |

Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository.


StoreBackup before 1.19 creates the backup root

StoreBackup | before |

StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.


The (1) shadow password file in na-img-4.0.34.b


The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.


kphone 4.2 creates .qt/kphonerc with world-read

world-readable | permissions | qt/kphonerc | usernames | passwords | creates | allows | kphone | which | local | users | read | SIP |

kphone 4.2 creates .qt/kphonerc with world-readable permissions, which allows local users to read usernames and SIP passwords.


Software vulnerabilities results 1 to 20 of 85     
Page: 12345