2 matches found
CVE-2015-6842
Technical details about CVE-2015-6842 are not publicly available in the provided documents. The connected Nessus plugin describes unrelated FreeBSD OTRS PID-file permissions but does not tie to this CVE. Monitor for updates.
FreeBSD : otrs -- Scheduler Process ID File Access (1e7f0c11-673a-11e5-98c8-60a44c524f57)
The OTRS project reports : An attacker with valid LOCAL credentials could access and manipulate the process ID file for bin/otrs.schduler.pl from the CLI. The Proc::Daemon module 0.14 for Perl uses world-writable permissions for a file that stores a process ID, which allows local users to have an...