CVE-2006-1376
published 2006-03-24CVE-2006-1376: The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows…
low2.1CVSS 3.1
AVLACLAuNCNINAP
The installation of Debian GNU/Linux 3.1r1 from the network install CD creates /var/log/debian-installer/cdebconf with world writable permissions, which allows local users to cause a denial of service (disk consumption).
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | shadow | < shadow 1:4.0.14-9 (bookworm) | shadow 1:4.0.14-9 (bookworm) |
| shadow_project | shadow | >= 0 < 1:4.0.14-9 | 1:4.0.14-9 |
| shadow_project | shadow | >= 0 < 1:4.0.14-9 | 1:4.0.14-9 |
| shadow_project | shadow | >= 0 < 1:4.0.14-9 | 1:4.0.14-9 |
| shadow_project | shadow | >= 0 < 1:4.0.14-9 | 1:4.0.14-9 |
CVSS provenance
nvd2.1LOWAV:L/AC:L/Au:N/C:N/I:N/A:P
osv2.1LOW