RSS   Vulnerabilities for 'Network automation system'   RSS

2006-07-26
 
CVE-2006-3878

CWE-Other
 

 
Opsware Network Automation System (NAS) 6.0 installs /etc/init.d/mysql with insecure permissions, which allows local users to read the root password for the MySQL MAX database or gain privileges by modifying /etc/init.d/mysql.

 


Copyright 2024, cxsecurity.com

 

Back to Top