CVE-2012-5605 – grinder: /var/lib/pulp/cache/grinder directory is world-writeable

https://notcve.org/view.php?id=CVE-2012-5605

Grinder in Red Hat CloudForms before 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files. Grinder en Red Hat CloudForms anteriores a v1.1 usa permisos "world-writable" para /var/lib/pulp/cache/grinder/, lo que permite a usuarios locales modificar la caché de los ficheros grinder. • http://osvdb.org/88141 http://rhn.redhat.com/errata/RHSA-2012-1543.html http://secunia.com/advisories/51472 http://www.securityfocus.com/bid/56819 https://bugzilla.redhat.com/show_bug.cgi?id=828447 https://bugzilla.redhat.com/show_bug.cgi?id=882138 https://exchange.xforce.ibmcloud.com/vulnerabilities/80550 https://access.redhat.com/security/cve/CVE-2012-5605 • CWE-264: Permissions, Privileges, and Access Controls •