Lucene search

K

MitreCVELIST:CVE-2008-5188

HistoryNov 21, 2008 - 2:00 a.m.

CVE-2008-5188

2008-11-2102:00:00

mitre

www.cve.org

8

AI Score

5.5

Confidence

Low

EPSS

0

Percentile

10.1%

The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process.

References

git.kernel.org/?p=linux/kernel/git/mhalcrow/ecryptfs-utils.git%3Ba=commit%3Bh=06de99afd53f03fe07eda0ad9d61ac6d5d4d9f53

osvdb.org/49334

osvdb.org/50353

osvdb.org/50354

osvdb.org/50355

rhn.redhat.com/errata/RHSA-2009-1307.html

secunia.com/advisories/32382

secunia.com/advisories/36552

www.openwall.com/lists/oss-security/2008/10/23/3

www.openwall.com/lists/oss-security/2008/10/29/4

www.openwall.com/lists/oss-security/2008/10/29/7

exchange.xforce.ibmcloud.com/vulnerabilities/46073

launchpad.net/bugs/287908

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9607

AI Score

5.5

Confidence

Low

EPSS

0

Percentile

10.1%

Related for CVELIST:CVE-2008-5188

redhat1 veracode1 cve1 centos1 nessus4 oraclelinux1 nvd1 openvas7 debiancve1 ubuntucve1 prion1