3 matches found
SUSE CVE-2013-0345
varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by reading the files. NOTE: some of these details are obtained from third party information...
CVE-2013-0345
CVE-2013-0345 affects Varnish 3.0.3, where world-readable permissions on /var/log/varnish/ and its log files allow local users to read sensitive information. The vulnerability is evidenced across multiple feeds (NVD entry and GLSA 2014-12-30, Fedora/OpenVAS entries) and is rated low by CVSS v2 (L...
PT-2014-2452 · Varnish · Varnish
Name of the Vulnerable Software and Affected Versions: varnish version 3.0.3 Description: The issue allows local users to obtain sensitive information by reading the log files in the /var/log/varnish/ directory due to world-readable permissions. Recommendations: For varnish version 3.0.3, conside...