CVE-2009-1296

EUVD-2009-1294
The eCryptfs support utilities (ecryptfs-utils) 73-0ubuntu6.1 on Ubuntu 9.04 stores the mount passphrase in installation logs, which might allow local users to obtain access to the filesystem by reading the log files from disk.  NOTE: the log files are only readable by root.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
1.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 20%
Affected Products (NVD)
VendorProductVersion
ubuntu73-oubuntu
6.1
ubuntuubuntu
9.0.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ecryptfs-utils
bookworm
111-6
fixed
bullseye
111-5
fixed
sid
111-7
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ecryptfs-utils
dapper
dne
hardy
not-affected
intrepid
not-affected
jaunty
Fixed 73-0ubuntu6.1
released
Common Weakness Enumeration
References
http://secunia.com/advisories/35383
http://www.securitytracker.com/id?1022347
http://www.ubuntu.com/usn/usn-783-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/51191
http://secunia.com/advisories/35383
http://www.securitytracker.com/id?1022347
http://www.ubuntu.com/usn/usn-783-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/51191