TROYANOSYVIRUS
Volver a CVEs

CVE-2012-4430

N/A

Descripcion

The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado10/10/2012
Ultima modificacion4/11/2025
Fuentenvd
Avistamientos honeypot0

Productos afectados

bacula:baculadebian:debian_linux

Debilidades (CWE)

CWE-264

Referencias

http://secunia.com/advisories/50535(secalert@redhat.com)
http://secunia.com/advisories/50808(secalert@redhat.com)
http://sourceforge.net/projects/bacula/files/bacula/5.2.12/ReleaseNotes/view(secalert@redhat.com)
http://www.bacula.org/en/?page=news(secalert@redhat.com)
http://www.bacula.org/git/cgit.cgi/bacula/commit/?id=67debcecd3d530c429e817e1d778e79dcd1db905(secalert@redhat.com)
http://www.debian.org/security/2012/dsa-2558(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2012:166(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/09/14/11(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/09/14/12(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/09/15/2(secalert@redhat.com)
http://www.securityfocus.com/bid/55505(secalert@redhat.com)
http://secunia.com/advisories/50535(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/50808(af854a3a-2127-422b-91ae-364da2661108)
http://sourceforge.net/projects/bacula/files/bacula/5.2.12/ReleaseNotes/view(af854a3a-2127-422b-91ae-364da2661108)
http://www.bacula.org/en/?page=news(af854a3a-2127-422b-91ae-364da2661108)
http://www.bacula.org/git/cgit.cgi/bacula/commit/?id=67debcecd3d530c429e817e1d778e79dcd1db905(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2012/dsa-2558(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2012:166(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/09/14/11(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/09/14/12(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/09/15/2(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/55505(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.