CVE-2012-2679

2012-10-22T19:55:05
ID CVE-2012-2679
Type cve
Reporter NVD
Modified 2017-08-28T21:31:39

Description

Red Hat Network (RHN) Configuration Client (rhncfg-client) in rhncfg before 5.10.27-8 uses weak permissions (world-readable) for /var/log/rhncfg-actions, which allows local users to obtain sensitive information about the rhncfg-client actions by reading the file.