• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Debian GNU/Linux Local Information Disclosure Vulnerability

Debian GNU/Linux is susceptible to a local information-disclosure vulnerability. This issue is due to the installation system improperly storing sensitive information in world-readable files.

This issue allows local users to gain access to sensitive information that may aid them in further attacks. If the affected computer was installed using an automated installation process, the pre-seeded superuser password may be available to attackers, facilitating the complete compromise of the computer.