CVE-2006-1183

High

7.2/10

Summary

The Ubuntu 5.10 installer does not properly clear passwords from the installer log file (questions.dat), and leaves the log file with world-readable permissions, which allows local users to gain privileges.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Mar 13, 2006

CVE-2006-1183

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS