First published: Mon Aug 29 2005(Updated: )
Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information.
Credit: security@debian.org
Affected Software | Affected Version | How to fix |
---|---|---|
sukria Backup Manager | =0.5.7 | |
sukria Backup Manager | =0.5.6 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 | |
Debian GNU/Linux | =3.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-1855 is classified as a moderate severity vulnerability that allows local users to access sensitive information through world-readable backup files.
To fix CVE-2005-1855, upgrade Backup Manager to version 0.5.8 or later, which ensures proper file permissions.
Backup Manager versions 0.5.6 and 0.5.7 are vulnerable to CVE-2005-1855.
Yes, CVE-2005-1855 affects Debian Linux systems running vulnerable versions of Backup Manager.
The impact of CVE-2005-1855 allows local users to potentially expose sensitive data contained in backup files.