2006-08-31 22:00:00
mitre
PUBLISHED
xbiff2 1.9 creates $HOME/.xbiff2rc in a users home directory with insecure file permissions, which allows local users to obtain sensitive information such as login credentials. NOTE: the provenance of this information is unknown; the details are obtained from third party information.