|Bugzilla:||988998: CVE-2013-4481 luci: short exposure of authentication secrets while generating configuration file|
A flaw was found in the way luci generated its configuration file. The file was created as world readable for a short period of time, allowing a local user to gain access to the authentication secrets stored in the configuration file.
CVSS v2 metrics
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Red Hat security errata
|Red Hat Enterprise Linux version 6 (luci)||RHSA-2013:1603||November 20, 2013|
This issue was discovered by Jan Pokorný of Red Hat.
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.