Red Hat · Red Hat Cloudforms · CVE-2012-5605
**Name of the Vulnerable Software and Affected Versions**
Red Hat CloudForms versions prior to 1.1
**Description**
The issue concerns the Grinder in Red Hat CloudForms, where world-writable permissions are used for the /var/lib/pulp/cache/grinder/ directory. This allows local users to modify grinder cache files.
**Recommendations**
For versions prior to 1.1, update to version 1.1 or later to resolve the issue. As a temporary workaround, consider restricting write access to the /var/lib/pulp/cache/grinder/ directory to prevent local users from modifying grinder cache files.