CVE-2006-2542

Name of the Vulnerable Software and Affected Versions: xmcd version 2.6-17.1

Description: The issue concerns the xmcdconfig in xmcd, which creates directories with world-writable permissions, allowing local users to cause a denial of service by consuming disk space. Multiple vulnerabilities in the cddb package of Debian GNU/Linux can lead to disruption of protected information availability, exploitable by local attackers.

Recommendations: For version 2.6-17.1, consider changing the permissions of the /var/lib/cddb and /var/lib/xmcd/discog directories to prevent world-writable access as a temporary workaround. Restrict access to these directories to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.