2 matches found
CVE-2010-2450
creationtimestamp| type| source ---|---|--- 2019-11-13 20:28:17+00:00| seen| https://t.me/cibsecurity/8091...
CVE-2010-2450
CVE-2010-2450 affects Shibboleth SP 2.0. The keygen.sh utility (in /usr/local/etc/shibboleth by default) uses OpenSSL to generate a DES private key and saves it to sp-key.pm with the process’s root umask (default 022). This results in the private key file being world-readable by default, exposing...