CVE-2006-1376

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux version 3.1r1

Description The issue concerns the installation of Debian GNU/Linux from the network install CD, which creates a log file with world writable permissions. This allows local users to cause a denial of service by consuming disk space.

Recommendations For Debian GNU/Linux version 3.1r1, consider changing the permissions of the /var/log/debian-installer/cdebconf file to prevent world writable access as a temporary workaround to minimize the risk of exploitation.