CVE-2011-3196

2014-03-21T04:38:00
ID CVE-2011-3196
Type cve
Reporter cve@mitre.org
Modified 2014-03-27T22:02:00

Description

The setup script in Domain Technologie Control (DTC) before 0.34.1 uses world-readable permissions for /etc/apache2/apache2.conf, which allows local users to obtain the dtcdaemons MySQL password by reading the file.