CVE-2012-5605

Grinder in Red Hat CloudForms before 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files.

🔗 References (14)

• secalert@redhathttp://osvdb.org/88141
• secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-1543.html
• secalert@redhathttp://secunia.com/advisories/51472
• secalert@redhathttp://www.securityfocus.com/bid/56819
• secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=828447
• secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=882138
• secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/80550
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/88141
• af854a3a-2127-422b-91ae-364da2661108http://rhn.redhat.com/errata/RHSA-2012-1543.html
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/51472
• af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/56819
• af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=828447
• af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=882138
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/80550