CVE-2012-5477

The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors...

CVE-2012-5477

The CVE entry describes a vulnerability in the Foreman smart proxy prior to version 1.1 where a misconfigured umask of 0 enables local users to modify files created by the daemon via unspecified vectors. The issue can affect integrity and availability (I:P, A:P) with local attack vector and no au...