3 matches found
CentOS 3 / 4 : sysreport (CESA-2005:502)
An updated sysreport package that fixes an information disclosure flaw is now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team Sysreport is a utility that gathers information about a system's hardware and configuration. The information...
CVE-2005-1760
Summary: CVE-2005-1760 affects sysreport up to 1.3.15. When run as root, sysreport includes /etc/sysconfig/rhn/up2date; if a proxy password is configured, that password is written in plaintext in the report, enabling local privilege escalation. Affected software/versions: sysreport 1.3.15 and ear...
CVE-2005-1760
sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges...