PT-2005-1135 · Debian · Debian

Published

2005-01-26

Updated

2017-07-11

CVE-2004-1340

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Debian GNU/Linux version 3.0

Description The issue allows local users to obtain sensitive information because the pam radius auth.conf file is set to be world-readable.

Recommendations For Debian GNU/Linux version 3.0, change the permissions of the pam radius auth.conf file to restrict read access to authorized users only.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1340

DSA-659-1

Affected Products

Debian

PT-2005-1135 · Debian · Debian

CVE-2004-1340

Related Identifiers

Affected Products

References · 8