2 matches found
CVE-2008-2368
Red Hat Certificate System 7.2 stores passwords in cleartext in the UserDirEnrollment log, the RA wizard installer log, and unspecified other debug log files, and uses weak permissions for these files, which allows local users to discover passwords by reading the files...
CVE-2008-2368
Red Hat Certificate System 7.2 stores passwords in cleartext in debug/log files (e.g., UserDirEnrollment log and RA wizard installer log) and uses weak file permissions, enabling local read access. The issue is fixed in Red Hat advisories RHSA-2009:0006/0007 by updating pkisetup, rhpki-* and rela...