Raritan Dominion SX (DSX) Console Servers DSX16, DSX32, DSX4, DSX8, and DSXA-48 set (1) world-readable permissions for /etc/shadow and (2) world-writable permissions for /bin/busybox, which allows local users to obtain hashed passwords or execute arbitrary code as other users.
References
Link | Resource |
---|---|
http://seclists.org/lists/bugtraq/2005/Jun/0251.html | Exploit Mailing List Patch Third Party Advisory Vendor Advisory |
http://secunia.com/advisories/15853 | Not Applicable Patch Vendor Advisory |
http://www.securityfocus.com/bid/14084 | Broken Link Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-07-05T04:00:00
Updated: 2005-07-07T09:00:00
Reserved: 2005-07-05T00:00:00
Link: CVE-2005-2136
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-07-05T04:00:00.000
Modified: 2023-04-25T17:27:31.373
Link: CVE-2005-2136
JSON object: View
Redhat Information
No data.
CWE