CVE-2000-0361

Name of the Vulnerable Software and Affected Versions wvdial versions 1.4 and earlier

Description The issue concerns the PPP wvdial.lxdialog script in wvdial, which creates a .config file with world-readable permissions. This allows a local attacker in the dialout group to access login and password information.

Recommendations For wvdial versions 1.4 and earlier, consider restricting access to the .config file created by the wvdial.lxdialog script to prevent unauthorized access to login and password information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.