Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1970

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2008-1970
Last Modified 30 Oct 2012 10:56:22
Published 27 Apr 2008 02:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-1970

Summary

muCommander before 0.8.2 stores credentials.xml with insecure permissions, which allows local users to obtain credentials.

Vulnerable Systems

Application

  • Mucommander 0.1

  • Mucommander 0.2

  • Mucommander 0.3

  • Mucommander 0.4

  • Mucommander 0.5

  • Mucommander 0.6

  • Mucommander 0.7

  • Mucommander 0.8


References

CONFIRM - http://www.mucommander.com/changes.php

SECUNIA - 29893

XF - mucommander-credentials-info-disclosure(41908)

BID - 28875


Last Updated: 27 May 2016 10:55:04