The PPP wvdial.lxdialog script in wvdial 1.4 and previous versions creates a .config file with world readable permissions, which allows a local attacker in the dialout group to access login and password information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
suse suse linux |