Computer Security
[EN] securityvulns.ru no-pyccku


Apache mod_auth_openid weak permissions
Published:29.07.2012
Source:
SecurityVulns ID:12493
Type:local
Threat Level:
4/10
Description:/tmp/mod_auth_openid.db weak permissions
Affected:APACHE : mod_auth_openid 0.6
CVE:CVE-2012-2760 (mod_auth_openid before 0.7 for Apache uses world-readable permissions for /tmp/mod_auth_openid.db, which allows local users to obtain session ids.)
Original documentdocumentMANDRIVA, [ MDVSA-2012:114 ] apache-mod_auth_openid (29.07.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod