Lucene search

CVE-2013-0348

🗓️ 13 Dec 2013 18:54:07Reported by redhatType

thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file

Reporter	Title	Published	Views	Family All 5
Prion	Design/Logic Flaw	13 Dec 201318:07	–	prion
Tenable Nessus	openSUSE Security Update : thttpd (openSUSE-SU-2013:1862-1)	13 Jun 201400:00	–	nessus
Cvelist	CVE-2013-0348	13 Dec 201318:00	–	cvelist
NVD	CVE-2013-0348	13 Dec 201318:07	–	nvd
OSV	OPENSUSE-SU-2024:10187-1 thttpd-2.26-4.7 on GA media	15 Jun 202400:00	–	osv

Nvd

Node

open_source_development_team sthttpdRange≤2.26.4

open_source_development_team sthttpdMatch2.26

open_source_development_team sthttpdMatch2.26.1

open_source_development_team sthttpdMatch2.26.2

open_source_development_team sthttpdMatch2.26.3

Node

fedoraproject fedoraMatch17

fedoraproject fedoraMatch18

gentoo linux

opensuse opensuseMatch12.2

opensuse opensuseMatch12.3

opensuse opensuseMatch13.1

Node

acme thttpdMatch2.25b

Source	Link
lists	www.lists.opensuse.org/opensuse-updates/2014-01/msg00015.html
bugs	www.bugs.gentoo.org/show_bug.cgi
openwall	www.openwall.com/lists/oss-security/2013/02/23/7
lists	www.lists.opensuse.org/opensuse-updates/2013-12/msg00050.html
opensource	www.opensource.dyc.edu/gitweb/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Dec 2013 18:07Current

6Medium risk

Vulners AI Score6

CVSS22.1

EPSS0.00042

CWE-264