CVE - CVE-2007-0227

CVE-ID
CVE-2007-0227	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
slocate 3.1 does not properly manage database entries that specify names of files in protected directories, which allows local users to obtain the names of private files. NOTE: another researcher reports that the issue is not present in slocate 2.7.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20070110 Re: slocate leaks filenames of protected directories URL:http://www.securityfocus.com/archive/1/456530/100/0/threaded BUGTRAQ:20070110 slocate leaks filenames of protected directories URL:http://www.securityfocus.com/archive/1/456489/100/0/threaded BUGTRAQ:20070111 Re: slocate leaks filenames of protected directories URL:http://www.securityfocus.com/archive/1/456593/100/0/threaded BUGTRAQ:20070112 Re: slocate leaks filenames of protected directories URL:http://www.securityfocus.com/archive/1/456739/100/0/threaded BUGTRAQ:20070329 FLEA-2007-0005-1: slocate URL:http://www.securityfocus.com/archive/1/464220/30/7320/threaded UBUNTU:USN-425-1 URL:http://www.ubuntu.com/usn/usn-425-1 BID:21989 URL:http://www.securityfocus.com/bid/21989 OSVDB:33465 URL:http://osvdb.org/33465
Assigning CNA
N/A
Date Entry Created
20070112	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070112)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org