PT-2007-7155 · Red Hat+1 · Fedora+2
Publicado
2007-12-18
·
Atualizado
2022-02-25
·
CVE-2007-6283
CVSS v2.0
4.9
Média
| Vetor | AV:L/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Red Hat Enterprise Linux versions 5
Fedora (affected versions not specified)
Description
The issue allows local users to perform unauthorized named commands due to the Bind /etc/rndc.key file having world-readable permissions. This can lead to a denial of service by stopping named.
Recommendations
For Red Hat Enterprise Linux version 5, change the permissions of the /etc/rndc.key file to prevent world-readable access.
For Fedora, change the permissions of the /etc/rndc.key file to prevent world-readable access.
Correção
DoS
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Bind
Fedora
Red Hat