Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4574

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2012-4574
Last Modified 01 Sep 2013 02:35:41
Published 04 Jan 2013 05:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-4574

Summary

Pulp in Red Hat CloudForms before 1.1 uses world-readable permissions for pulp.conf, which allows local users to read the administrative password by reading this file.

Vulnerable Systems

Application

  • Redhat Cloudforms 1.0


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=872487

XF - cloudforms-pulpconf-info-disc(80548)

BID - 56819

SECUNIA - 51472

REDHAT - RHSA-2012:1543

OSVDB - 88138


Last Updated: 27 May 2016 10:44:50