Security Advisory

CVE-2007-5626

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-10-23 16:00:00

Last updated 2024-08-07 15:39:13

Assigner mitre

State PUBLISHED

Description

make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffing the network.

← Browse all CVEs View on cve.org ↗