CVE-2008-1970

muCommander before 0.8.2 stores credentials.xml with insecure permissions, which allows local users to obtain credentials.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
VendorProductVersion
mucommandermucommander
𝑥
≤ 0.8
mucommandermucommander
0.1
mucommandermucommander
0.2
mucommandermucommander
0.3
mucommandermucommander
0.4
mucommandermucommander
0.5
mucommandermucommander
0.6
mucommandermucommander
0.7
mucommandermucommander
0.8:beta1
mucommandermucommander
0.8:beta2
mucommandermucommander
0.8:beta3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/29893
http://www.mucommander.com/changes.php
http://www.securityfocus.com/bid/28875
https://exchange.xforce.ibmcloud.com/vulnerabilities/41908
http://secunia.com/advisories/29893
http://www.mucommander.com/changes.php
http://www.securityfocus.com/bid/28875
https://exchange.xforce.ibmcloud.com/vulnerabilities/41908