sthttpd 'thttpd.log' Insecure File Permissions Vulnerability

sthttpd is prone to an insecure file-permission vulnerability.

A local attacker can exploit this issue by gaining access to a world-readable log file and extracting sensitive information from it. Such information could aid in other attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus