Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-2058HistoryJun 07, 2010 - 5:13 p.m.
CVE-2010-2058
2010-06-0717:13:07
Debian Security Bug Tracker
security-tracker.debian.org
7
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
setup.py in Prewikka 0.9.14 installs prewikka.conf with world-readable permissions, which allows local users to obtain the SQL database password.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | prewikka | < 1.0.0-1.1 | prewikka_1.0.0-1.1_all.deb |
| Debian | 11 | all | prewikka | < 1.0.0-1.1 | prewikka_1.0.0-1.1_all.deb |
| Debian | 999 | all | prewikka | < 1.0.0-1.1 | prewikka_1.0.0-1.1_all.deb |
| Debian | 13 | all | prewikka | < 1.0.0-1.1 | prewikka_1.0.0-1.1_all.deb |
Related
cve
cve
CVE-2010-2058
2010-06-07 17:13:07
securityvulns
securityvulns
Prewikka weak permissions
2011-01-18 00:00:00
[ GLSA 201101-07 ] Prewikka: password disclosure
2011-01-18 00:00:00
prion
prion
Design/Logic Flaw
2010-06-07 17:13:00
openvas
openvas
Gentoo Security Advisory GLSA 201101-07 (Prewikka)
2011-03-09 00:00:00
Fedora Core 9 FEDORA-2009-3789 (prewikka)
2009-05-05 00:00:00
Gentoo Security Advisory GLSA 201101-07 (Prewikka)
2011-03-09 00:00:00
nessus
nessus
GLSA-201101-07 : Prewikka: password disclosure
2011-01-17 00:00:00
Fedora 9 : prewikka-0.9.14-2.fc9 (2009-3789)
2009-04-28 00:00:00
nvd
nvd
CVE-2010-2058
2010-06-07 17:13:07
ubuntucve
ubuntucve
CVE-2010-2058
2010-06-07 00:00:00
gentoo
gentoo
Prewikka: password disclosure
2011-01-16 00:00:00
cvelist
cvelist
CVE-2010-2058
2010-06-07 13:38:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Related for DEBIANCVE:CVE-2010-2058