Open Source CVE-2006-2443 Information Disclosure Vulnerability

Open Source CVE-2006-2443 Information Disclosure Vulnerability

Open Source is prone to a information disclosure vulnerability. The Debian package of knowledgetree 2.0.7 creates environment.php with world-readable permissions, which allows local users to obtain sensitive information such as the username and password for the KnowledgeTree database.