RSS   Podatności dla 'Sosreport'   RSS

2017-11-06
 
CVE-2015-7529

CWE-59
 

 
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.

 
2014-05-29
 
CVE-2014-0246

CWE-255
 

 
SOSreport stores the md5 hash of the GRUB bootloader password in an archive, which allows local users to obtain sensitive information by reading the archive.

 


Copyright 2024, cxsecurity.com

 

Back to Top