The dump_resource function in dird/dird_conf.c in Bacula prior to 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bacula bacula |
||
debian debian linux 7.0 |
||
debian debian linux 6.0 |