2 matches found
CVE-2006-6680
Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need for 0400 permissions on /etc/chetcpasswd.allow, which might allow local users to gain sensitive information by reading this file...
CVE-2006-6680
CVE-2006-6680 affects chetcpasswd before 2.3.1. The issue arises from not documenting the need for 0400 permissions on /etc/chetcpasswd.allow, potentially permitting local users to read the file and obtain sensitive information. Evidence across sources (NVD/Red Hat entries) confirms the file path...