3 matches found
Debian Security Advisory DSA 830-1 (ntlmaps)
The remote host is missing an update to ntlmaps announced via advisory DSA 830-1. Drew Parsons noticed that the post-installation script of ntlmaps, an NTLM authorisation proxy server, changes the permissions of the configuration file to be world-readable. It contains the user name and password o...
CVE-2005-2962
The ntlmaps package is affected. The post-installation script for ntlmaps before version 0.9.9 changes the configuration file to world-readable, allowing local users to read the Windows NT username and password ntlmaps connects to. Debian advisories (DSA-830-1) state this has been fixed in 0.9.9-...
CVE-2005-2962
Removed by vendor...