CVE

Id
60292  
CVE No.
CVE-2013-0345  
Status
Candidate  
Description
varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by reading the files. NOTE: some of these details are obtained from third party information.  
Phase
Assigned (20121206)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
608370 60292 CVE-2013-0345 MLIST:[oss-security] 20130222 CVE request: varnish world-readable logdir  View
608371 60292 CVE-2013-0345 URL:http://www.openwall.com/lists/oss-security/2013/02/22/14  View
608372 60292 CVE-2013-0345 MLIST:[oss-security] 20130222 Re: CVE request: varnish world-readable logdir  View
608373 60292 CVE-2013-0345 URL:http://www.openwall.com/lists/oss-security/2013/02/23/4  View
608374 60292 CVE-2013-0345 BID:58125  View
608375 60292 CVE-2013-0345 URL:http://www.securityfocus.com/bid/58125  View
608376 60292 CVE-2013-0345 OSVDB:90586  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24819 JVNDB-2013-006394 pktstat の tmp_smtp.c における任意のファイルを上書きされる脆弱性 pktstat の tmp_smtp.c には、任意のファイルを上書きされる脆弱性が存在します。 CVE-2013-0350 60292 6.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-006394.html  View