CVE-2007-5686 -- shadowID: oval:org.secpod.oval:def:2003253 | Date: (C)2020-09-23 (M)2021-09-11 |
Class: VULNERABILITY | Family: unix |
initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging failed authentication attempts by remote attackers.
Platform: |
Debian 10.x |
Debian 9.x |
Product: |
login |
passwd |
uidmap |