CVE-2010-3912

Name of the Vulnerable Software and Affected Versions SUSE Linux Enterprise versions 10 SP3 and 11 SP1

Description The supportconfig script in supportutils does not properly disguise passwords in configuration files. The impact and attack vectors of this issue are not specified.

Recommendations For SUSE Linux Enterprise version 10 SP3, update the supportutils package to a version that properly disguises passwords in configuration files. For SUSE Linux Enterprise version 11 SP1, update the supportutils package to a version that properly disguises passwords in configuration files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.