Vulnerability Details

Feed Type Docker
Title CVE-2007-5686
Description initscripts in rPath Linux 1 sets insecure permissions for the /var/log/btmp file, which allows local users to obtain sensitive information regarding authentication attempts. NOTE: because sshd detects the insecure permissions and does not log certain events, this also prevents sshd from logging failed authentication attempts by remote attackers.

Severity: Negligible
More Information:

Namespace: debian:10
Feature: shadow
Feature Version: 1:4.5-1.1
Fixed By Version:
Container Layer Hash sha256:d121f8d1c4128ebc1e95e5bfad90a0189b84eadbbb2fbaad20cbb26d20b2c8a2
Source Clair
Assessment Ignore by gdivis@inedo.local on 9/16/2020 9:46:41 AM
Expiration 12/15/2020 8:46:41 AM (90 days from assessment)


There are no comments for this vulnerability.