world readable software vulnerabilities
vulnerabilities.aspcode.net
Searching world readable software vulnerabilities
A vulnerability in Caldera Open Administration
Administration
|
vulnerability
|
Caldera
|
System
|
Open
|
A vulnerability in Caldera Open Administration System (COAS) allows the /etc/shadow password file to be made world-readable.
RealSystem G2 server stores the administrator p
world-readable
|
administrator
|
configuration
|
RealSystem
|
privileges
|
cleartext
|
password
|
allows
|
stores
|
server
|
users
|
local
|
which
|
gain
|
file
|
RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.
Real Media RealServer (rmserver) 6.0.3.353 stor
RealServer
|
Media
|
Real
|
Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.
DIT TransferPro installs devices with world-rea
world-readable
|
world-writable
|
TransferPro
|
permissions
|
installs
|
through
|
devices
|
damage
|
driver
|
device
|
disks
|
users
|
could
|
which
|
local
|
allow
|
DIT
|
DIT TransferPro installs devices with world-readable and world-writable permissions, which could allow local users to damage disks through the ff device driver.
netstation.navio-com.rte 1.1.0.1 configuration
netstationnavio-comrte
|
netstation.navio-com.rte 1.1.0.1 configuration script for Navio NC on IBM AIX exports /tmp over NFS as world-readable and world-writable.
kdesu in kdelibs package creates world readable
authentication
|
containing
|
privileges
|
temporary
|
readable
|
kdelibs
|
package
|
creates
|
allow
|
users
|
local
|
which
|
world
|
files
|
kdesu
|
gain
|
info
|
can
|
kdesu in kdelibs package creates world readable temporary files containing authentication info, which can allow local users to gain privileges.
BasiliX 1.1.0 saves attachments in a world read
BasiliX
|
BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments.
SnortCenter 0.9.5, when configured to push Snor
SnortCenter
|
SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers.
Mantis 0.17.5 and earlier stores its database p
Mantis
|
Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.
Kolab stores OpenLDAP passwords in plaintext in
world-readable
|
privileges
|
slapdconf
|
installed
|
plaintext
|
passwords
|
OpenLDAP
|
allows
|
stores
|
users
|
local
|
which
|
Kolab
|
gain
|
file
|
may
|
Kolab stores OpenLDAP passwords in plaintext in the slapd.conf file, which may be installed world-readable, which allows local users to gain privileges.
MTools Mformat before 3.9.9, when installed set
Mformat
|
before
|
MTools
|
MTools Mformat before 3.9.9, when installed setuid root, creates files with world-readable and world-writable permissions, which allows local users to read and overwrite files.
The /.inlook/.crypt file for inlook 0.7.3 and e
/inlook/crypt
|
inlook
|
file
|
The /.inlook/.crypt file for inlook 0.7.3 and earlier is installed with world readable permissions, which allows local users to obtain user POP3 credentials.
Einstein 1.0 stores credit card information in
world-readable
|
information
|
walletsdat
|
plaintext
|
Einstein
|
allows
|
stores
|
credit
|
steal
|
local
|
users
|
which
|
card
|
file
|
Einstein 1.0 stores credit card information in plaintext in the world-readable wallets.dat file, which allows local users to steal the information.
reportbug before 2.62 creates the .reportbugrc
reportbug
|
before
|
reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords.
Cybration ICUII 7.0 stores passwords in plainte
world-readable
|
privileges
|
plaintext
|
passwords
|
Cybration
|
icuiiini
|
allows
|
stores
|
users
|
ICUII
|
local
|
which
|
file
|
gain
|
Cybration ICUII 7.0 stores passwords in plaintext in the world-readable icuii.ini file, which allows local users to gain privileges.
Backup Manager 0.5.8a creates an archive reposi
permissions
|
repository
|
attackers
|
readable
|
writable
|
creates
|
Manager
|
archive
|
allows
|
modify
|
Backup
|
world
|
which
|
read
|
058a
|
Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows attackers to modify or read the repository.
StoreBackup before 1.19 creates the backup root
StoreBackup
|
before
|
StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
drm.c in Linux kernel 2.6.10 to 2.6.13 creates
kernel
|
Linux
|
drmc
|
drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs with world-readable and world-writable permissions, which allows local users to enable DRM debugging and obtain sensitive information.
The (1) shadow password file in na-img-4.0.34.b
The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.
kphone 4.2 creates .qt/kphonerc with world-read
world-readable
|
permissions
|
qt/kphonerc
|
usernames
|
passwords
|
creates
|
allows
|
kphone
|
which
|
local
|
users
|
read
|
SIP
|
kphone 4.2 creates .qt/kphonerc with world-readable permissions, which allows local users to read usernames and SIP passwords.
Software vulnerabilities results 1 to 20 of 174
Page:
1
2
3
4
5
...
9
►