CVE-2012-4574 – pulp /etc/pulp/pulp.conf world readable, contains default admin password
https://notcve.org/view.php?id=CVE-2012-4574
Pulp in Red Hat CloudForms before 1.1 uses world-readable permissions for pulp.conf, which allows local users to read the administrative password by reading this file. Pulp en Red Hat CloudForms anteriores a v1.1 usa permisos "world-readable" en pulp.conf, lo que permite a usuarios locales a leer las contraseñas administrativas leyendo este fichero. • http://osvdb.org/88138 http://rhn.redhat.com/errata/RHSA-2012-1543.html http://secunia.com/advisories/51472 http://www.securityfocus.com/bid/56819 https://bugzilla.redhat.com/show_bug.cgi?id=872487 https://exchange.xforce.ibmcloud.com/vulnerabilities/80548 https://access.redhat.com/security/cve/CVE-2012-4574 • CWE-255: Credentials Management Errors •