thttpd.c in sthttpd prior to 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open source development team sthttpd 2.26.3 |
||
open source development team sthttpd 2.26 |
||
open source development team sthttpd 2.26.1 |
||
open source development team sthttpd 2.26.2 |
||
open source development team sthttpd |
||
fedoraproject fedora 17 |
||
fedoraproject fedora 18 |
||
opensuse opensuse 12.3 |
||
opensuse opensuse 12.2 |
||
gentoo linux |
||
opensuse opensuse 13.1 |
||
acme thttpd 2.25 |