PT-2005-1225 · Helvis · Helvis

Published

2005-01-19

Updated

2008-09-05

CVE-2005-0118

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions helvis versions 1.8h2 1 and earlier

Description The issue allows local users to read the recovered files of other users because helvis stores recovery files in world-readable directories with world-readable permissions.

Recommendations For helvis versions 1.8h2 1 and earlier, consider changing the permissions of the recovery file directories to restrict access and prevent unauthorized reading of recovered files.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-0118

Affected Products

Helvis

PT-2005-1225 · Helvis · Helvis

CVE-2005-0118

Related Identifiers

Affected Products

References · 2