The buf.pl script prior to 2.20 in Irssi prior to 0.8.20 uses weak permissions for the scrollbuffer dump file created between upgrades, which might allow local users to obtain sensitive information from private chat conversations by reading the file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
irssi buf.pl |