CVE-2010-2241

Publication date

2010-08-17 17:31:00

Family

redhat

State

PUBLISHED

Description

The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 before 8.2 use world-readable permissions when creating cache files, which allows local users to obtain sensitive information including passwords for Directory and Administration Server administrative accounts.