| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20040625130834.GA22980@debian.local> From: dirk at pirschel.de (Dirk Pirschel) Subject: Security hole in Confixx backup script Hi, I found a security hole in Confixx. A malicious backup request via the webinterface might be used by any user to read files located in /root (which is the default installation directory of confixx). The most interesting files you can retrieve with this attack are: /root/confixx/safe/shadow.tmp /root/confixx/safe/shadow_header These files are used to build /etc/shadow, i.e. they contain all (encrypted) passwords used on this host. SWSoft has been informed yesterday at 22:30 (CET). If you are using confixx, you should disable the backup script. -Dirk -- Linux - The choice of a GNU generation -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040625/d466ae87/attachment.bin
Powered by blists - more mailing lists