sysreport 1.3.15 and previous versions includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat sysreport 1.2 |
||
redhat sysreport 1.3 |
||
redhat sysreport 1.1 |
||
redhat enterprise linux 2.1 |
||
redhat enterprise linux 4.0 |
||
redhat enterprise linux 3.0 |
||
redhat linux advanced workstation 2.1 |
||
redhat enterprise linux desktop 3.0 |
||
redhat enterprise linux desktop 4.0 |